Brutus(again)

[Phonedog911]

yeah, i was on here asking about this the other day and everybody got into this big flame war thing and i never got my question answered. anyway, could somebody please be nice enough to help me with a few simple questions i have about it?

1. Whenever i try it on something, it only does one attempt and returns that the first entry in the wordlist is the correct password.

2. in the html(form) options, what is the "html response" thing about? (and whats with the positive/negative thing?)

ps: realize that abusing this program will get me arrested and a record and all that stuff, so you dont have to post anything abou that. and i dont plan on doing anything, once i know how to use it im going to move on to something else. (im just trying to learn about IS)

thanx for your help in advance

[MrLinus]

Have you tried their homepage? It's been a while since I've mucked about in Brutus but I know there was a setting for it to go through things (I generally chose brute force than a word list).

[Cybr1d]

I checked the FAQ on their website but they didnt have much. Here's a little tutorial I could find about Brutus. Hope it helps:

How to use Brutus.©


Written by: The Messiah



==========================================================
I, The Messiah, take no responsibilty for what you do with the information
that I am providing for you. This information is for educational purposes only.
==========================================================

Chapter 1: Introduction to Brutus.

1.What is Brutus?

2.What can I do with it?

3 Where can I download Brutus?

4.Where can I find a good password list?


Chapter Two: Let's Get Crackin'.

1.HTTP Form.

2.FTP.

3.POP3

4.Telnet.

5.SMB (Netbios)

6.Netbus

7.Custom.

Chapter Three: Wrapping up.

1.Contact Information.



========================================
Chapter One.

==What is Brutus?==

Brutus is a well known password brute forcing program.

==What can I do with it?==

With Brutus, you can brute force passwords for HTTP, FTP, POP3, Telnet, SMB (Netbios), Netbus, and they also have a "Custom" option so you can specify your own settings.

==Where can I download Brutus?==
You can find Brutus at it's webpage www.hoobie.net/brutus
You can also find it at GluTuk's site www.spartandownloads.2ys.com

==Where can I find a good password list to use with Brutus?==
Pretty much, the only password list you will ever need was made by CoMÞÛT3R GÈÉk
and The_IRS, and has 4.9 million passwords. Here are a link where you can download it.

Part 1.
http://members.cox.net/passwordlist1...ist_part_1.zip

Part 2
http://members.cox.net/passwordlist2...ist_part_2.zip

if those don't work, try this link.

http://www.cfyre.myip.org/glutuk/ult...sword_list.zip
==============================================================

Chapter Two: Let's Get Crackin'.

Note: You can use a proxy for each cracking method.

==HTTP Form==

This is the option you would use if you want to crack into a website that has a field for a username and a pass, like this one.

http://www.westbranch.k12.oh.us/staff/controls.asp

I will use this site for the rest ov this section as well.

First thing you wanna do is open Brutus, and select http form. Then click the modify sequence button. Once there we put the above link into the Target form field, then click Learn Form Settings
From here, you click the field name that is for the username, in this case it is userid, once you have selected it, click the username button that is shown above the cookie information. That tells brutus that that field is for the username. Then you select the password field and click the password button, then click accept. Next, in the HTML Response field you need to fill that in with the response you get when you try to enter a password into your site. In this case the response is "You have entered a wrong Password or username." For this target we will put that into the Primary response field Once this is done, we click ok, add the IP into the Target Field and start our crack.

==FTP==

For cracking an FTP server, the default settings should remain how they are, I usually make sure that the "Try to stay connected for unlimited attempts" box is ticked.Thats up to you, once you have selected your options, enter the IP and being the crack.

==POP3==

This is pretty much the same as FTP cracking as far as, the default settings should work for you. Once again, I like to use the "Try to stay connected for unlimited attempts" option.

==Telnet==

Seems as if I'm repeating myself, but once again, the default settings should werk for you.

==SMB (Netbios)==

If you happen to find yourself a target that has the netbios port open (139) and has sharing enabled, but needs a password, this is what you would use. Once again, default settings should werk.

==Netbus==

Netbus is a popular trojan that sometimes, you might find a server that needs a password to connect.
This option is used for, cracking a password protected Netbus server.

==Custom==

This is what you would use to set up a crack for anything else that you could think ov.You need to find out what you need to put in each field once you click "Define sequence" Those options will vary from target to target.

Chapter Three: Wrapping up.

==Contact Information==

If you have any questions, comments, death threats, or declarations ov love, you can contact me with the following information.

Email: mechanical_messiah87@yahoo.com

AOL Instant Messenger: Th3 m3ss14h

Yahoo Messenger: mechanical_messiah87

MSN Messenger: Th3_m3ss14h@hotmail.com (you can also email me there)

ICQ: 166664521
====================================
If you choose to host this tutorial on your site, give credit where it's due.

Hope this helps!

The Messiah.

[Phonedog911]

==HTTP Form==

This is the option you would use if you want to crack into a website that has a field for a username and a pass, like this one.

http://www.westbranch.k12.oh.us/staff/controls.asp

I will use this site for the rest ov this section as well.

yeah, i found that tut on google too... you dont think the ohio public school system would care if i tried to crack their website, do you?

i've only tried it on the message board section of my own site and the main problem i have is that it only does one attempt and then quits.
i also was wondering what the "html response" thing is. the tut tells you what it is:

Next, in the HTML Response field you need to fill that in with the response you get when you try to enter a password into your site. In this case the response is "You have entered a wrong Password or username." For this target we will put that into the Primary response field

but i cant find what it would be on my web page. and whats with the positive/negative option that goes with it?

[Phonedog911]

i fixed the first problem by selecting the "primary response is positive" option, so it actually will run but i have no idea what goes in the "html primary response" field, thats what i really need to know.