Complete Hydra Tutorial: How to Brute Force Authentication

THC Hydra tutorial explaining how to brute force passwords using thc hydra password cracker, understand

Hydra Syntax

Hydra v8.6 (c) 2017 by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.

Syntax: hydra [[[-l LOGIN|-L FILE] [-p PASS|-P FILE]] | [-C FILE]] [-e nsr] [-o FILE] [-t TASKS] [-M FILE [-T TASKS]] [-w TIME] [-W TIME] [-f] [-s PORT] [-x MIN:MAX:CHARSET] [-c TIME] [-ISOuvVd46] [service://server[:PORT][/OPT]]

Options:
  -l LOGIN or -L FILE  login with LOGIN name, or load several logins from FILE
  -p PASS  or -P FILE  try password PASS, or load several passwords from FILE
  -C FILE   colon separated "login:pass" format, instead of -L/-P options
  -M FILE   list of servers to attack, one entry per line, ':' to specify port
  -t TASKS  run TASKS number of connects in parallel per target (default: 16)
  -U        service module usage details
  -h        more command line options (COMPLETE HELP)
  server    the target: DNS, IP or 192.168.0.0/24 (this OR the -M option)
  service   the service to crack (see below for supported protocols)
  OPT       some service modules support additional input (-U for module help)

Supported services: adam6500 asterisk cisco cisco-enable cvs firebird ftp ftps http[s]-{head|get|post} http[s]-{get|post}-form http-proxy http-proxy-urlenum icq imap[s] irc ldap2[s] ldap3[-{cram|digest}md5][s] mssql mysql nntp oracle-listener oracle-sid pcanywhere pcnfs pop3[s] postgres radmin2 rdp redis rexec rlogin rpcap rsh rtsp s7-300 sip smb smtp[s] smtp-enum snmp socks5 ssh sshkey svn teamspeak telnet[s] vmauthd vnc xmpp

Hydra is a tool to guess/crack valid login/password pairs. Licensed under AGPL
v3.0. The newest version is always available at http://www.thc.org/thc-hydra
Don't use in military or secret service organizations, or for illegal purposes.

Example:  hydra -l user -P passlist.txt ftp://192.168.0.1

-l LOGIN or -L FILE

hydra -m /index.php -l username -P pass.txt IP https

hydra IP ftp -l username -P wordlist -e ns -vV

hydra -l administrator -P pass.txt IP smb

Define a List of users

hydra -L users_list.txt -P pass.txt IP smb

Attack Multiple Servers

-M File

Hydra Modules

Brute Force SSH with Hydra

hydra -U ssh
hydra -l root -P wordlists.txt ssh://10.10.10.10

Brute Force Telnet with Hydra

Brute Force FTP with Hydra

Brute Force Team Speak with Hydra

Brute Force SMB with Hydra

Brute Force CISCO Auth

Brute Force CISCO Auth with Hydra

Brute Force IMAP with Hydra

Brute Force RDP with Hydra