Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Cracking FTP password so that I can convince people not to use FTP, and to instead use SFTP? How do I crack the pwd?

From: "Robin Wood" <dninja () gmail com>
Date: Sat, 11 Oct 2008 20:05:55 +0100
2008/10/11 Chip Panarchy <forumanarchy () gmail com>:

Well thanks for the replies guys.

The most helpful ones (apart from the ones explaining how the protocol
works and differences between that and SFTP etc.) were the ones that
suggested I use;

Brutus or Hydra. (oh, and Metasploit)

As my 'live-hack' will involve crack the FTP site remotely (completely
different network, thus making Wireshark less useful).


It may be worth looking through youtube or one of the other video
sites for videos of people doing it, I used a video of someone doing a
bruteforce attack against a web login form to convince a client of why
they should use strong passwords rather than their company names.

Saves creating your own demo which if you've ever seen a failed one
you'll know that it isn't always as easy as you'd think.

Robin

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now

www.cenzic.com/landing/trends-report
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: