Watch video on-line: http://g0tmi1k.blip.tv/file/2318952
Download video: http://www.mediafire.com/?yhc1adzytiqibjc
What is this?
A basic guide on how to use hydra to crack a http password on a 'home' router.
How does this work?
> Uses a dictionary attack to test for weak or simple passwords on one or more remote clients
What do I need?
> (Big) dictionary
Home Page: http://freeworld.thc.org/welcome/
Download Link: http://freeworld.thc.org/download.ph...5.4-src.tar.gz
Notes:Code:hydra -l admin -P /pentest/passwords/wordlists/g0tmi1k.lst -e ns -t 15 -f -s -vV 192.168.1.1 http-get / -l = username -P = password (Looks for a wordlist) -e ns = checks for 'null' password -t xx= How many tasks to run at once -f = exit once it finds the first user/password -s = connect via SSL -vV = verbose mode (shows more info) 192.168.1.1 = IP address http-get = what to crack/method etc / = Page to crack - root
This is cut from my final video called "g0tmi1k's home network".
The password HAS to be in the dictionary - so if you use something like http://grc.com/pass, the chances of it being crack is next to nothing!
Song: Rage Against The Machine - Killing in the Name of (Mr. Oizo Remix)
Video length: 01:21
Capture length: 01:40
Forum Post: http://www.backtrack-linux.org/forums/backtrack-videos/1657-%5Bvideo%5D-how-crack-http-passwords-hydra.html