Fellow Pen-testers:
Version 1.3 of Medusa is now available for public download.
What is Medusa? Medusa is a speedy, massively parallel, modular, login
brute-forcer for network services created by the geeks at Foofus.net. It
currently has modules for the following services: CVS, FTP, HTTP, IMAP,
MS-SQL, MySQL, NCP (NetWare), PcAnywhere, POP3, PostgreSQL, rexec,
rlogin, rsh, SMB, SMTP (VRFY), SNMP, SSHv2, SVN, Telnet, VmAuthd, VNC,
and a generic wrapper module.
While Medusa was designed to serve the same purpose as THC-Hydra, there
are several significant differences. For a brief comparison, see:
http://www.foofus.net/jmk/medusa/medusa-compare.html
This release fixes several autoconf issues and a number of minor bugs. A
somewhat detailed report is available here:
http://www.foofus.net/jmk/medusa/ChangeLog
Finally, the main documentation and actual files are located here:
http://www.foofus.net/jmk/medusa/medusa.html
http://www.foofus.net/jmk/tools/medusa-1.3.tar.gz
Medusa was developed on Gentoo Linux and FreeBSD. Some limited testing
has been done on other platforms/distributions (OpenBSD, Debian, Ubuntu,
Darwin, Solaris). If people wish to contribute patches to fix
portability issues, I'd be happy to accept them. There are probably lots
of bugs which have yet to surface. Please let me know if you encounter
issues, fix a bug or just find the application useful.
Enjoy,
Joe
--
jmk <jmk@foofus.net>
Foofus Networks
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------
