search

minvws / nl-kat-coordination

Repo nl-kat-coordination for minvws
European Union Public License 1.2
122 stars 55 forks source link

[Feature Request] Bruteforcing Boefje #2603

Open originalsouth opened 4 months ago

originalsouth commented 4 months ago

Is your feature request related to a problem? Please describe. Whenever an open port with a categorized web service is found, one probably wonders how secure the service actually is. Is it possible to log on to the service in finite time with a common set of login credentials.

Describe the solution you'd like With the proper clearances (probably level 4) an OpenKAT user may use of a Password Cracking/Bruteforcing Boefje to test service at hand (@brennodewinter may come up with a proper KAT name). https://github.com/vanhauser-thc/thc-hydra is a common tool for this purpose (others listed below). Login credentials can be:

Describe alternatives you've considered Alternatives could be:

Additional context https://hackonology.com/blogs/brute-forcing-passwords-with-ncrack-hydra-and-medusa/

ammar92 commented 4 months ago

Although at first a brute force tool doesn't seem fully appropriate as a Boefje, but given that it can be used in the context of testing a set of default passwords, or credentials scraped by OpenKAT as you suggested, it makes more sense to me now. We should be aware of the consequences though and strictly define conditions and boundaries as to not kill the remote resource (due to rescheduling or too many input OOIs triggering this task)

originalsouth commented 4 months ago

Agree, @ammar92, as Bruteforcing can take a lot of resources and we will possibly accumulate many target OOIs this task will need to be setup and scheduled as conservative as possible.

@noamblitz I believe you are working on a guide to implement Boefjes? Perhaps this can be a good task to work in conjunction.