Medusa Cracker

[Germain Aguilera]

Hereh option is used for host, -U option for username file and -p is for the password. So basically, you can perform brute force on the username field and can crack the correct username for the password.

Sometimes, the network admin may change the port number of service to another port due to security reasons. So, when performing a brute force attack using normal command so it will attack on default port. But we can use -n option so that attack will start on a mentioned port rather than the default port.

Here, in the first command, we are using -h, -U and -M option and ssh service whose default port is 22. But due to security reasons, its port number is changed to 2222 as detected using the nmap scan and first command did not work. So, to launch the attack we used -n option which will specify the specific port number.

For better readability, record maintenance and future references we can save the output of the brute force attack of the medusa tool in a different text file. For this, we will use parameter -O to save output in text file.

Here, again the command is the same we have just added a new parameter -O to store the logs in text file log.txt. Then to ensure whether the output is stored in file, we have opened it using cat command. And the result shows the desired output.

This tool provides an option for verbose mode. There are in all six verbose level. All messages at or below the specified level will be displayed. The default level is 5. The following is the breakdown of the verbose levels:

Medusa gives an option of using combo entries while brute forcing. The option -C uses a file containing combo entries. Combo files are colon separated and in the following format: host:user:password. If any of the three fields are left empty, the respective information should be provided either as single global value or as a list in a file. You can use following combinations.

So here first userpass.txt file is created where data is stored in form of host:username:password. And then medusa brute force attack is performed using -C option. You can take reference from screenshot attached.

If you want to perform concurrent testing on multiple logins so for that you use -t option. After that mention the number of logins you want to test concurrently and hence medusa will brute force on respective logins.

In the previous example I used grep "account is found" to cut most of the output, so I only receive user names and passwords, but if I were to do this on the actual target it is not my home network i running normally so I can see to what extent the attack is on.

darknet.org.uk/2006/05/medusa-password-cracker-version-11-now-available-for-download/ Medusa is intended to be a speedy, massively parallel, modular, login brute-forcer. The goal is to support as many services which allow remote authentication as possible

Un "cracker" es una persona que se dedica a la piratera informtica, a romper sistemas de seguridad informtica, software, redes o dispositivos electrnicos con el propsito de acceder a informacin o recursos de manera no autorizada.

A diferencia de los "hackers", que pueden tener objetivos ticos y legales al buscar vulnerabilidades para mejorar la seguridad, los "crackers" suelen tener intenciones maliciosas, como robar datos, distribuir malware o causar dao.

RainbowCrack es una herramienta que se enfoca en el uso de tablas arco iris (rainbow tables) para acelerar los ataques de fuerza bruta. Las tablas arco iris son una forma de precalcular y almacenar contraseas encriptadas para acelerar la bsqueda de contraseas coincidentes.

Medusa es una herramienta de prueba de penetracin que se utiliza para llevar a cabo ataques de fuerza bruta y ataques de diccionario en contraseas. Permite a los usuarios automatizar el proceso de prueba de contraseas para identificar contraseas dbiles o vulnerabilidades de seguridad en sistemas y aplicaciones.

Wfuzz es una herramienta de prueba de penetracin utilizada para realizar ataques de fuzzing y fuerza bruta en aplicaciones web. Permite a los usuarios automatizar la exploracin y prueba de URLs en busca de posibles vulnerabilidades.Se utiliza comnmente para evaluar la seguridad de aplicaciones web y encontrar posibles puntos de entrada para ataques.

Crackstation es una base de datos de contraseas en lnea, por lo que no tiene una interfaz de usuario en el sentido tradicional. Los usuarios pueden acceder a su sitio web para buscar contraseas ya crackeadas.

La documentacin, tutoriales y otros recursos en lnea relacionados con RainbowCrack pueden estar disponibles en varios idiomas, ya que la comunidad de ciberseguridad a menudo proporciona documentacin y soporte

LinkedIn and 3rd parties use essential and non-essential cookies to provide, secure, analyze and improve our Services, and to show you relevant ads (including professional and job ads) on and off LinkedIn. Learn more in our Cookie Policy.

A secret string of characters is used for the authentication process in various applications is called a password. It is used to gain access to various accounts, repositories, and databases but at the same time, protects them from unauthorized access.

The time taken to complete is relatively more, but there are more chances of coverage of likely clear text value (all possibilities only if set to the maximum length and every possible character is considered in every position). It is like a combination lock which requires three numbers to be taken in sequence; one tries every possible combination - e.g., First 1-2-3, then 1-2-4.

A brute force attack may not try all options in sequential order. An advanced brute force attack can make certain assumptions like complexity rules require uppercase, first character more likely to be upper than lower case.

The dictionary/possible combinations are based on some possible values and tend not to consider options of remote possibility. It may be based on the knowledge of one or a few key information about the target (family member names, birthday, etc.). The dictionary is based on the patterns or combinations that were observed across a massive number of users to determine the most commonly used patterns. The dictionary is more likely to include real words than random strings of characters.

One of the widely used remote online tools used for password-cracking is Brutus. Brutus claims to be the fastest paced and flexible password cracking tool. It is available free of cost and can only be operated in Windows. I t was released in October 2000.

HTTP for Basic Authentication, Pop3, Telnet, HTTP (HTML Form/CGI), FTP, SMB, and other types such as NetBus, IMAP, NNTP, etc. are supported in this. One can also create his own types of authentication. This tool supports the multi-stage authentication engines and is also capable of connecting with 60 simultaneous targets. Resume and Load are two of its good features. Using these features, one can halt the attack process any time and then resume whenever one would want to resume.

It falls in the hash cracker tool category that utilizes a large-scale time-memory trade off process for faster password cracking compared to traditional brute force tools. Time & memory trade-off is a process of computation where all plain text and hash pairs get calculated by using a chosen hash algorithm. The results are then stored in the rainbow table. This process can be very time-consuming. But, once the table is ready, it is capable of cracking passwords much faster than tools using brute force.

Wfuzz is a web application for password cracking that cracks passwords using brute forcing. It can be used to find hidden resources too like servlets, directories and scripts. This tool is also capable of identifying different kinds of injections with, XSS Injection, LDAP Injection, SQL Injection, etc. in applications of Web.

John the Ripper is yet another popular free open source tool for password cracking in Linux, Mac OS X and Unix. A version for Windows is also available. This tool detects weak passwords. The pro-version of this tool is also available, which offers greater features with native packages for the test of target operating systems.

Medusa is another tool for password cracking like THC Hydra. It is known to be a speedy parallel, login brute forcing tool and modular. When cracking the password; host, password and username can be a flexible input while the performance of the attack.

In this tool the attacker can also carry out parallel attacks at one time. It allows one to crack passwords of multiple email accounts simultaneously. He can specify the username list along with the password list.

OphCrack is available for free which is a rainbow-table based tool for password cracking on Windows. It is a popular Windows password cracking tool which can also be used on Linux or Mac. It can crack LM and NTLM hashes. For cracking Windows 7, Vista or Windows XP, free rainbow-tables are made available.

L0phtCrack serves as substitute to OphCrack. It makes various attempts on cracking Windows passwords from hashes. For cracking these passwords, it utilizes the primary controllers of domain, workstations (windows), network server, also Active Directory. It also makes use of dictionary attack and brute force attacking in guessing and generating of passwords. It became an acquisition to Symantec and discontinued in the year 2006. Later developers of L0pht again re-acquired it and launched their L0phtCrack in the year 2009.

Aircrack-NG is a tool for cracking of WiFi passwords that can crack WPA or WEP passwords. It analyses wireless encrypted packets also then tries to crack the passwords with cracking its algorithm. The FMS attack is utilized with other useful attacking methods for cracking of passwords. It is available on Linux and Windows systems. CD of Aircrack is also made available live.

3a8082e126