search

x90skysn3k / brutespray

Bruteforcing from various scanner output - Automatically attempts default creds on found services.
MIT License
1.96k stars 381 forks source link

ERROR: Failed to match regex pattern within server's response. #47

Closed jasperf closed 3 years ago

jasperf commented 3 years ago

Just ran /brutespray.py -f test.xml -U /Users/jasper/medusa/sample/usernames.txt -P /Users/jasper/medusa/sample/1000000-password-seclists.txt --threads 5 --hosts 5 and received an error telling that the regular expression pattern cannot be matched to the server's response:

ERROR: Failed to match regex pattern within server's response.
ERROR: Failed to match regex pattern within server's response.
ERROR: Failed to match regex pattern within server's response.
ERROR: No supported authentication methods located.
ERROR: No supported authentication methods located.
ERROR: No supported authentication methods located.
ERROR: No supported authentication methods located.
ERROR: No supported authentication methods located.
2020-11-03 12:04:03 ACCOUNT CHECK: [ssh] Host: xxx.xxx.xxx.xx (1 of 1, 0 complete) User: Aaren (1 of 362904, 0 complete) Password: 123456789 (1 of 1000000 complete)
2020-11-03 12:04:03 ACCOUNT CHECK: [ssh] Host: xxx.xxx.xxx.xx (1 of 1, 0 complete) User: Aaren (1 of 362904, 0 complete) Password: password (2 of 1000000 complete)
2020-11-03 12:04:03 ACCOUNT CHECK: [ssh] Host: xxx.xxx.xxx.xx (1 of 1, 0 complete) User: Aaren (1 of 362904, 0 complete) Password: qwerty (3 of 1000000 complete)
2020-11-03 12:04:03 ACCOUNT CHECK: [ssh] Host: xxx.xxx.xxx.xx (1 of 1, 0 complete) User: Aaren (1 of 362904, 0 complete) Password: 123456 (4 of 1000000 complete)
2020-11-03 12:04:03 ACCOUNT CHECK: [ssh] Host: xxx.xxx.xxx.xx (1 of 1, 0 complete) User: Aaren (1 of 362904, 0 complete) Password: 12345678 (5 of 1000000 complete)
ERROR: Failed to match regex pattern within server's response.
ERROR: Failed to match regex pattern within server's response.

This though I ran the nmap command nmap -v -sV -oA test staging.domain.com before and stored the data. Any ideas why this is happening? Could it be because the domain root hits a 302 redirecting to a login?

x90skysn3k commented 3 years ago

this looks to be a service / medusa error

jasperf commented 3 years ago

@x90skysn3k I see. Will open up a ticket with the developer of Medusa then. Thank you for the feedback.