Hydra tool
Hydra
Hydra is a very fast online password cracking tool, which can perform rapid dictionary attacks against more than 50 Protocols, including Telnet, RDP, SSH, FTP, HTTP, HTTPS, SMB, several databases and much more. Hydra comes by default on both Parrot and Kali, however if you need it, you can find the GitHub here. The syntax for the command we’re going to use to find the passwords is this: 
How does hydra work?
1
2
hydra -t 4 -l dale -P /usr/share/wordlists/rockyou.txt -vV 10.10.10.6 ftp
hydra -t 16 -l USERNAME -P /usr/share/wordlists/rockyou.txt -vV MACHINE_IP ssh
Let’s break it down:
| Argument | Function |
|---|---|
| -t | Number of parallel connections per target |
| -l [user] | Points to the user who’s account you’re trying to compromise |
| -P | [path to dictionary] Points to the file containing the list of possible passwords |
| -vV | Sets verbose mode to very verbose, shows the login+pass combination for each attempt |
| [machine IP] | The IP address of the target machine |
| ftp / protocol | Sets the protocol |
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
<script src="https://giscus.app/client.js"
data-repo="SoOM3a/Blogs"
data-repo-id="R_kgDOLebVZA"
data-category="General"
data-category-id="DIC_kwDOLebVZM4Cd9IX"
data-mapping="url"
data-strict="1"
data-reactions-enabled="1"
data-emit-metadata="1"
data-input-position="top"
data-theme="preferred_color_scheme"
data-lang="en"
data-loading="lazy"
crossorigin="anonymous"
async> </script>
This post is licensed under CC BY 4.0 by the author.