Password bruteforcers plugin

[cr0hn]

Add bruteforcer plugins. We can use for that:

• http://www.edge-security.com/edgessh.php
• https://code.google.com/p/patator/

[MarioVilas]

How about Hydra instead? It's a single tool that supports lots of protocols and it's well known.

[cr0hn]

Hydra has a binary dependency. This runs standalone. Can be good alternative.

[MarioVilas]

We're already way past the point of having no binary dependencies... (nmap, openvas). I prefer to choose the best tool regardless of it's being binary or pure-Python - also there's a very high chance a pure-Python tool would be much slower.

[cr0hn]

Yes, but in these cases there are not better options to do the same. For brute, there is available option.

Hydra can be other different plugin. It’s not incompatible :)

[MarioVilas]

In that case it'd probably be better to have a single password bruteforcer plugin that supports more than one external tool.

[jekkay]

My friend Deng develop a plugin which can detect the weak password based on password dictionary using Nmap and hydra. Nmap is used detect the open port&service, then brute crack the password with hydra. It works well most of time, but hydra will stuck sometimes, and we still don't get the reason and have no good solution for it except killing it roughly.

[MarioVilas]

@cr0hn pointed out today there's also ncrack, which integrates with nmap, so it's probably easier to integrate from our side too (just modify the existing nmap plugin a bit). http://nmap.org/ncrack/

[MarioVilas]

Also:

• https://github.com/tkisason/unhash
• https://github.com/tkisason/gcrack

[MarioVilas]

More on Hydra: http://www.aldeid.com/wiki/Thc-hydra

Once we get ticket #250 working we can implement two or more plugins for different crackers, but it may still be a good idea to have a single plugin for all bruteforcing, so we can choose which external tool works best for each protocol.

[MarioVilas]

Another interesting project: https://github.com/urbanadventurer/username-anarchy

[devcoinfet]

I suggest an integration with Patator, say it finds Port 3306 I haven't read Your Source Code entirely yet but I'm thinking it may be a good idea if not already done to build a list of ports and banners and return it as an dictionary accessible to the main code this way if we find mssql or mysql we can easily code a test module to run a test using Patator. Once I understand Your Code Base and all that better I'll take an actual stab at the TODO list.

https://github.com/lanjelot/patator