Network Security: Detailed info on Re: Re: broute forcing telnet and ssh

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Security-Basics

[Top] [All Lists]

Re: Re: broute forcing telnet and ssh

from [planbb] Network Security

[Permanent Link]

Subject:	Re: Re: broute forcing telnet and ssh
Date:	26 Sep 2005 20:41:26 -0000

I was hoping to find a similar tool. Brutus works well for ftp, http and telnet 
auths. I have yet to find a good one for ssh. I was looking for one as well 
because a few of the servers at work have been rooted via ssh brute force. A 
weak password was to blame. 

There is some sort of program in circulation and I was hoping to find the code 
for it. It seems it doesn't just brute force but it checks for typical 
usernames and passwords. For example it tries admin, root, apache, vsftpd, 
ftpsecure and all those. 

Almost all the secure log files on all the servers were filled with failed in 
ssh log attempts. Solution to this was to listen on a different port and run a 
daemon that prevents too many failed attempts from one IP. 

I would still very much like to see the ssh brute forcer that they are using. 
Anyone know where?

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
broute forcing telnet and ssh, Juan B RE: broute forcing telnet and ssh, Meni Milstein Re: broute forcing telnet and ssh, Gregory Boyce Re: broute forcing telnet and ssh, Jeffrey F. Bloss Re: Re: broute forcing telnet and ssh, planbb <= RE: Re: broute forcing telnet and ssh, Miguel Dilaj RE: Re: broute forcing telnet and ssh, Steve Fletcher

Previous by Date:	Re: Log Analyzer Tool, infosecadmin
Next by Date:	RE: Core Banking Applications, Beauford, Jason
Previous by Thread:	Re: broute forcing telnet and ssh, Jeffrey F. Bloss
Next by Thread:	RE: Re: broute forcing telnet and ssh, Miguel Dilaj
Indexes:	[Date] [Thread] [Top] [All Lists]