vanhauser-thc/thc-hydra

Add unauthorized vulnerability to result

Open

#667 opened on Jun 21, 2021

View on GitHub
 (1 comment) (0 reactions) (0 assignees)C (1,913 forks)batch import
enhancementhelp wanted

Repository metrics

Stars
 (8,689 stars)
PR merge metrics
 (Avg merge 2d 14h) (2 merged PRs in 30d)

Description

For example

hydra redis://127.0.0.1:6379 -P top1000.txt -o out-hydra.json -b json
Hydra v9.2 (c) 2021 by van Hauser/THC & David Maciejak - Please do not use in military or secret service organizations, or for illegal purposes (this is non-binding, these *** ignore laws and ethics anyway).

Hydra (https://github.com/vanhauser-thc/thc-hydra) starting at 2021-06-21 16:15:22
[DATA] max 16 tasks per 1 server, overall 16 tasks, 1056 login tries (l:1/p:1056), ~66 tries per task
[DATA] attacking redis://127.0.0.1:6379/
[!] The server 127.0.0.1 does not require password.

Got a unauthorized redis vulnerability

Do not have this info in result file

{ "generator": {
	"software": "Hydra", "version": "v9.2", "built": "2021-06-21 16:18:02",
	"server": "127.0.0.1", "service": "redis", "jsonoutputversion": "1.00",
	"commandline": "hydra -P top1000.txt -o out-hydra.json -b json redis://127.0.0.1:6379"
	},
"results": [
	],
"success": false,
"errormessages": [ "[ERROR] unexpected result connecting to target 127.0.0.1 port 6379" ],
"quantityfound": 0   }

Contributor guide