vanhauser-thc/thc-hydra

Add unauthorized vulnerability to result

Open

#667 aperta il 21 giu 2021

Vedi su GitHub
 (1 commento) (0 reazioni) (0 assegnatari)C (1913 fork)batch import
enhancementhelp wanted

Metriche repository

Star
 (8689 star)
Metriche merge PR
 (Merge medio 2g 14h) (2 PR mergiate in 30 g)

Descrizione

For example

hydra redis://127.0.0.1:6379 -P top1000.txt -o out-hydra.json -b json
Hydra v9.2 (c) 2021 by van Hauser/THC & David Maciejak - Please do not use in military or secret service organizations, or for illegal purposes (this is non-binding, these *** ignore laws and ethics anyway).

Hydra (https://github.com/vanhauser-thc/thc-hydra) starting at 2021-06-21 16:15:22
[DATA] max 16 tasks per 1 server, overall 16 tasks, 1056 login tries (l:1/p:1056), ~66 tries per task
[DATA] attacking redis://127.0.0.1:6379/
[!] The server 127.0.0.1 does not require password.

Got a unauthorized redis vulnerability

Do not have this info in result file

{ "generator": {
	"software": "Hydra", "version": "v9.2", "built": "2021-06-21 16:18:02",
	"server": "127.0.0.1", "service": "redis", "jsonoutputversion": "1.00",
	"commandline": "hydra -P top1000.txt -o out-hydra.json -b json redis://127.0.0.1:6379"
	},
"results": [
	],
"success": false,
"errormessages": [ "[ERROR] unexpected result connecting to target 127.0.0.1 port 6379" ],
"quantityfound": 0   }

Guida contributor