Web Application Security
Re: hydra and HTTP NTLM May 25 2012 08:02AM
Robin Wood (robin digininja org)
On 25 May 2012 08:55, Jamie Riden <jamie.riden (at) gmail (dot) com [email concealed]> wrote:
> On 23 May 2012 13:14, Robin Wood <robin (at) digininja (dot) org [email concealed]> wrote:
>> Anyone know how to use the new HTTP NTLM feature in Hydra? I'm trying
>> to brute force a MS Front Page login which only asks for
>> authentication when the OPTIONS method is used as far as I can tell.
>
> Pathological case is to use something like ntlmaps -
> http://ntlmaps.sourceforge.net/ - and script that. Would be slow but
> it would be something.
>
> Might be better to rip or amend the code though...

I saw that mentioned as an option when someone else asked about this
area but was after a quicker option. I might have a look through this
after the test as a tool for next time.

> cheers,
>  Jamie
> --
> Jamie Riden / jamie (at) honeynet (dot) org [email concealed] / jamie.riden (at) gmail (dot) com [email concealed]
> http://uk.linkedin.com/in/jamieriden

This list is sponsored by Cenzic
--------------------------------------
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website HealthCheck. FREE.
Request Yours Now!
http://www.cenzic.com/2009HClaunch_Securityfocus
--------------------------------------

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus