✔️ Assess password policies via network services

✔️ Gain access to network services

✔️ Gain access to web applications

we can use similar approach as password-file cracking on network authentications such as:

• SSH
• Telnet
• Remote Desktop
• HTTP Authentication
• etc

we can use both attacks against a network authentication

1. Brute force
2. Dictionary-based attack

Brute force 🔨 vs 📖 Dictionary attacks

why is brute force impractical?

Online vs Offline Brute Force attacks:

time to test password offline (JtR) → processing time

over a network, time to test passwords depends on:

• network latency
• delays on the attacked surface
• processing time on the attack server

That's why network authentication attacks practically depend on → dictionary attacks

use common default usernames and passwords

collection of passwords

• install the seclists package in kali

🧰 Tools for Network Authentication attacks

🐉 Hydra

Fast, parallelized, network authentication cracker that supports different protocols

can attack ~50 different service types

✅dictionary attacks

✅bruteforce attacks

Hydra architecture is based on modules

A module is a piece of code that let's Hydra attack a specific protocol

🧭 Configuring Hydra