[c-nsp] Brute Forcer [Slightly OT]
Alexander Clouter
alex at digriz.org.uk
Mon Jun 27 17:24:22 EDT 2011
James Bensley <jwbensley at gmail.com> wrote:
>
> I've had a play with Hydra which can brute force a Telnet session to a
> Cisco device. The problem is Hydra (as far as I can tell) only uses
> dictionary attacks. Does anyone know of a tool that will brute force
> Telnet and/or SNMP communities when given a typical brute force
> character set like a-zA-Z0-9 etc and length, instead of a dictionary.
>
pipe your community list into xargs calling snmpget (wrapped in sh) and
check the return code to decide to echo 'HIT!'. Tweak timeouts and make
use of xargs '-P' to make things faster.
> Bonus points for anyone that can recommend a tool they have actually
> used and not just read about and have had success with said tool :D
>
Bonus points for making it a shell one liner? This unit works for beer.
Cheers
--
Alexander Clouter
.sigmonster says: Captain's Log, star date 21:34.5...
More information about the cisco-nsp
mailing list