Is there a way to use Hydra to crack a telnet password that has no username?
I know brutus has/had an option for that but I can't seem to find a flag/option on Hydra.
Forum Thread: Hydra with No Username
- Hot
- Active
-
Forum Thread:
When My Kali Linux Finishes Installing (It Is Ready to Boot), and When I Try to Boot It All I Get Is a Black Screen.
8
Replies
21 hrs ago -
Forum Thread:
HACK ANDROID with KALI USING PORT FORWARDING(portmap.io)
12
Replies
1 wk ago -
Forum Thread:
Hydra Syntax Issue Stops After 16 Attempts
2
Replies
4 wks ago -
Forum Thread:
Hack Instagram Account Using BruteForce
208
Replies
4 wks ago -
Forum Thread:
Metasploit reverse_tcp Handler Problem
47
Replies
2 mo ago -
Forum Thread:
How to Train to Be an IT Security Professional (Ethical Hacker)
22
Replies
2 mo ago -
Metasploit Error:
Handler Failed to Bind
41
Replies
3 mo ago -
Forum Thread:
How to Hack Android Phone Using Same Wifi
21
Replies
3 mo ago -
How to:
HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide]
177
Replies
3 mo ago -
How to:
Crack Instagram Passwords Using Instainsane
36
Replies
3 mo ago -
Forum Thread:
How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More
5
Replies
3 mo ago -
Forum Thread:
How Many Hackers Have Played Watch_Dogs Game Before?
13
Replies
3 mo ago -
Forum Thread:
How to Hack an Android Device with Only a Ip Adress
55
Replies
4 mo ago -
How to:
Sign the APK File with Embedded Payload (The Ultimate Guide)
10
Replies
4 mo ago -
Forum Thread:
How to Run and Install Kali Linux on a Chromebook
18
Replies
5 mo ago -
Forum Thread:
How to Find Admin Panel Page of a Website?
13
Replies
6 mo ago -
Forum Thread:
can i run kali lenux in windows 10 without reboting my computer
4
Replies
6 mo ago -
Forum Thread:
How to Hack School Website
11
Replies
6 mo ago -
Forum Thread:
Make a Phishing Page for Harvesting Credentials Yourself
8
Replies
6 mo ago -
Forum Thread:
Creating an Completely Undetectable Executable in Under 15 Minutes!
38
Replies
7 mo ago
-
How To:
Crack Shadow Hashes After Getting Root on a Linux System
-
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
Tutorial:
Create Wordlists with Crunch
-
How To:
Exploit EternalBlue on Windows Server with Metasploit
-
How To:
Find Vulnerable Webcams Across the Globe Using Shodan
-
How To:
Brute-Force FTP Credentials & Get Server Access
-
How To:
Create a Persistent Back Door in Android Using Kali Linux:
-
How To:
Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How To:
Scan for Vulnerabilities on Any Website Using Nikto
-
How To:
Use Kismet to Watch Wi-Fi User Activity Through Walls
-
How To:
Make Your Own Bad USB
-
How To:
Use Command Injection to Pop a Reverse Shell on a Web Server
-
How To:
Scrape Target Email Addresses with TheHarvester
-
How To:
Find Passwords in Exposed Log Files with Google Dorks
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
How To:
Hide a Virus Inside of a Fake Picture
-
How To:
Create Malicious QR Codes to Hack Phones & Other Scanners
-
How To:
Dox Anyone
-
How To:
Crack SSH Private Key Passwords with John the Ripper
-
How To:
Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
7 Responses
Have you tried hydra -l "" ?
yes, does not seem to work.
To be clear: The target only uses a password to authenticate (e.g. It does NOT prompt for a username)?
correct.
Well, looking at the debugging output from Hydra and attempting to analyze the telnet session with tcpdump, I don't think this is possible with this tool. It appears that even specifying a blank username, Hydra will still send the username parameter. Which makes sense as that is what that tool is designed to do.
I could be wrong as I am not an expert on Hydra. There is a good chance someone else would know more. I can see where other people are asking the same type of question, but, so far I have not seen any viable answers.
For your particular purpose, I think it would be easier, and far more productive, to either use a different tool or simply write your own. There are some good articles on this site for creating a script to do exactly what you are attempting to achieve. While sometimes it doesn't make sense to re-create the wheel, I think it is a good exercise and helps one understand exactly what is going on.
Sorry I could not help you, it sure was interesting digging into the subject, but, maybe someone else can shed some light.
Best wishes!
Thanks for the try David.
always learn things even when we don't get what we are looking for :)
Hydra has the option "cisco" for this (no username required for telnet).
This command line should ideally work,
hydra -P passswords.txt cisco://127.0.0.1
Share Your Thoughts