Penetration Testing mailing list archives

RE: Bruteforce HTTP Basic authentification

From: "Todd Towles" <toddtowles () brookshires com>
Date: Wed, 17 Aug 2005 20:40:44 -0500

I would look at Hydra - http://thc.org/thc-hydra/

-----Original Message-----
From: nik [mailto:nik () adminzone ru] 
Sent: Wednesday, August 17, 2005 4:34 AM
To: pen-test () securityfocus com
Subject: Bruteforce HTTP Basic authentification

Hello list!
I'm doing little pen-test of a web-application for a small company.
This application uses HTTP Basic autintification. So the question is:
does any one know some tools (such as brutus) for brutforce 
usernames and passwors for this type of authentification. 
These tools must run under Linux or FreeBSD.

PS. Sorry for my poor English.... I'm from Russia.

With best regards  Nik.

--------------------------------------------------------------
----------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know 
That You Don't

Learn the hacker's secrets that compromise wireless LANs. 
Secure your WLAN by understanding these threats, available 
hacking tools and proven countermeasures. Defend your WLAN 
against man-in-the-Middle attacks and session hijacking, 
denial-of-service, rogue access points, identity thefts and 
MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
--------------------------------------------------------------
-----------------


------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't

Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------

Current thread:

Bruteforce HTTP Basic authentification nik (Aug 17)
- Re: Bruteforce HTTP Basic authentification Thor (Hammer of God) (Aug 17)
- Re: Bruteforce HTTP Basic authentification Ivan . (Aug 17)
- Re: Bruteforce HTTP Basic authentification Chris Kuethe (Aug 17)
  - Message not available
    - Re: Bruteforce HTTP Basic authentification Chris Kuethe (Aug 18)
- <Possible follow-ups>
- RE: Bruteforce HTTP Basic authentification Todd Towles (Aug 17)
- Re: Re: Bruteforce HTTP Basic authentification bannedit (Aug 18)
- Re: Bruteforce HTTP Basic authentification Chris Kuethe (Aug 19)
  - Re: Bruteforce HTTP Basic authentification Chris Kuethe (Aug 19)