Hydra Notes - Zacham17/my-tech-journal GitHub Wiki
- Hydra is a password cracking tool that uses brute force to try passwords entered into the command, or from a wordlist until it either tries all passwords or guesses a password correctly. Hydra supports various protocols to attack.
-
-l <USER>: Specifies the username to login with -
-P <FILE>: Specifies a File (wordlist) containing passwords to try -
-f: Exits after the first found login/password pair -
-t <x>: Specifies the number of tasks running in parallel. Can be up to 64. -
Example with SSH:
hydra -l peregrin.took -P pippin_mangled.txt 10.0.5.21 -f -t 64 ssh -
Example with HTTP:
hydra -l frodo -P frodo_mangled.txt -s 80 -f 10.0.5.21 http-get /admin/