Chapter Two: Let's Get Crackin'.
Note: You can use a proxy for each cracking method.
==HTTP Form==
This is the option you would use if you want to crack into a website that has a field for a username and a pass, like this one.
http://www.westbranch.k12.oh.us/staff/controls.asp
I will use this site for the rest ov this section as well.
First thing you wanna do is open Brutus, and select http form. Then click the modify sequence button. Once there we put the above link into the Target form field, then click Learn Form Settings. From here, you click the field name that is for the username, in this case it is userid, once you have selected it, click the username button that is shown above the cookie information. That tells brutus that that field is for the username. Then you select the password field and click the password button, then click accept. Next, in the HTML Response field you need to fill that in with the response you get when you try to enter a password into your site. In this case the response is "You have entered a wrong Password or username." For this target we will put that into the Primary response field Once this is done, we click ok, add the IP into the Target Field and start our crack.
==FTP==
For cracking an FTP server, the default settings should remain how they are, I usually make sure that the "Try to stay connected for unlimited attempts" box is ticked.Thats up to you, once you have selected your options, enter the IP and being the crack.
