Page 5 of 6 FirstFirst ... 3456 LastLast
Results 41 to 50 of 60

Thread: hydra & routers

  1. #41
    Developer balding_parrot's Avatar
    Join Date
    May 2007
    Posts
    3,399

    Default

    Quote Originally Posted by feyt333 View Post
    please give me passlist and user list ?
    Quote Originally Posted by feyt333 View Post
    i try http-get but always wrong user and pass
    What, where, when. you are going to have to provide a lot more information if you expect anyone to be able to have a clue what the problem is.

  2. #42
    Junior Member
    Join Date
    Jun 2006
    Posts
    28

    Default

    i am sory my english is bad

    i try my route crack with hydraGTK but always find wrong pass

    i dont know where l mistake

  3. #43
    Junior Member
    Join Date
    Jul 2007
    Posts
    67

  4. #44
    Just burned his ISO
    Join Date
    Jan 2008
    Posts
    11

    Default

    My router here is an Belkin46g

    It has no username (or at least, I can't enter one)

    I can only enter a password

    Also, when I enter a wrong password I get referred to a badpassword.htm page.. Can I get around this?

    Can I do this with Hydra? Because Hydra needs a username.

    I tried it with Hydra but after the first or second or so checked password from my list, he gives me the "attack finished ... waiting for childs to finish" message.

  5. #45
    Junior Member Thunderbirdboy's Avatar
    Join Date
    Feb 2010
    Posts
    26

    Default

    Nice video Pureh@te!
    It just will not work for me.
    I am trying with a D-link router Di-624. its at 192.168.0.1. admin/pass=1234

    I have done a very simpel wordlist:
    1234
    abcd
    4321
    dcba

    when I choose "show attempts" the output is this:

    Hydra v5.4 (c) 2006 by van Hauser / THC - use allowed only for legal purposes.
    Hydra (url here) starting at 2008-03-12 03:09:59
    [DATA] 4 tasks, 1 servers, 4 login tries (l:1/p:4), ~1 tries per task
    [DATA] attacking service http-get on port 80
    [VERBOSE] Resolving addresses ... done
    [ATTEMPT] target 192.168.0.1 - login "admin" - pass "1234" - child 0 - 1 of 4
    [ATTEMPT] target 192.168.0.1 - login "admin" - pass "abcd" - child 1 - 2 of 4
    [ATTEMPT] target 192.168.0.1 - login "admin" - pass "4321" - child 2 - 3 of 4
    [STATUS] attack finished for 192.168.0.1 (waiting for childs to finish)
    [ATTEMPT] target 192.168.0.1 - login "admin" - pass "dcba" - child 3 - 4 of 4
    Hydra (url here) finished at 2008-03-12 03:09:59
    <finished>

    I have also tryed without the wordlist just typing in the user and password, but it didn't help.
    I have tryed with both hydra 5,3 on BT2 and 5,4 on BT3 beta. it's the same thing.
    I have also tryed changing : tasks, timeout and the :"http /https url" field.

    any good idears, anybody?

  6. #46

    Default

    yeah, i never got Hydra to work at all. And i think it's just a huge inside joke/myth that anyone has gotten it to work, ever. But my friend ataxicwolf wrote a program called tartarus that works flawlessly against routers and even other http login apps like cpanel etc.. Here are his links:

    http://www.photels.org/tartarus/

    Tartarus v1.0:
    http://www.photels.org/tartarus/source.py

    Video of Tartarus v1.0: (in ogg format)
    http://www.photels.org/tartarus/video.ogg

    I think this script is brilliant and he did a great job. I recommend it to any of you who can't get hydra to work as a quick fix.

  7. #47
    Developer
    Join Date
    Mar 2007
    Posts
    6,124

    Default

    Its not a myth and the tool works. I really dont know what to tell you except start tweaking the options in hydra. Any nice link trevlyn. I always like to chect out new tools.

  8. #48

    Default

    i know, that was me just joking around, i really just wanted to share ataxicwolf's work, because it totally rocks. If you were to combine this python script with -=Xploitz=-'s HUGE password list [via torrent from the Gen IT thread] you would probably get into ANY router.
    It's pretty fast too and like I said you can use it against cpanel and stuff - I tried it against my website.

  9. #49

    Default

    Quote Originally Posted by trevelyn View Post
    yeah, i never got Hydra to work at all. And i think it's just a huge inside joke/myth that anyone has gotten it to work, ever. But my friend ataxicwolf wrote a program called tartarus that works flawlessly against routers and even other http login apps like cpanel etc.. Here are his links:

    http://www.photels.org/tartarus/

    Tartarus v1.0:
    http://www.photels.org/tartarus/source.py

    Video of Tartarus v1.0: (in ogg format)
    http://www.photels.org/tartarus/video.ogg

    I think this script is brilliant and he did a great job. I recommend it to any of you who can't get hydra to work as a quick fix.

    Nice video Trevelyn, this is something I will look into doing possibly later tonight good stuff, it's always appreciated to see something new added here

    ** Purehate, i've not had a chance to look at your video as our firewall blocked it in work so I'll be trying that later......however I might be thinking twice later esp if you are pwning routers lol

  10. #50
    Junior Member
    Join Date
    Jun 2006
    Posts
    28

    Default

    Tartarus Password Cracker v1.0
    A Dictionary Cracker for HTTP
    -------------------------------
    Enter Address Requiring Authentication
    (Do not include http:// or www.)
    >>192.168.2.1
    Enter Port Number:
    (Default for HTTP Authentication is 80)
    >>80
    Enter Username for Page:
    >>
    Enter Path of Dictionary File:
    >>wordlist.txt
    The URL: http://192.168.2.1:80 does not require authentication
    Try checking that the port and address are correct

    I dont know where is the worng?

Page 5 of 6 FirstFirst ... 3456 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •