Brute force Password hacking. Siehe Penetration testing.

hydra -L <userlist> -P <passwordlist> <host> <module> "<uri>:<parameters>:Fail message" -S -V

• uri must start with /
• parameters are name=value pairs like querystring
• fail message is whats shown on the form on failure
• -S for secure
• -l username, -L userlist
• -p password -P passwordlist

Links