How to do a Dictionary Attack using kali Linux

I want to find out login password for Ubuntu operating System. 
I'm using Kali Linux.
Assume that you have a word List and the username to that operating system.

Black Boxed - Kali Linux 

Red Boxed - Ubuntu operating system that I want to log in.







1.      Find the mac of the VM.
       Right click on the VM you want to log in => Click Settings => Click Network => Expand 'Advanced'.
You can Find the Mac address of the VM there.



Open Kali Linux and run the following commands.

2.      Find the IP address of the VM.
     By looking at the mac address we can find out the IP address. 
     In here it is 3rd IP address which matches the Mac address we have found earlier.
     IP - 192.168.8.102


3.      Find the open ports
       In here ssh and http ports are opened.



4.      Run ‘hydra’ command and obtain the password
      hydra -V -l segreto -P /root/Desktop/word_list.txt 192.168.8.102 ssh
      -V =>to display the current password that hydra is trying
      segreto => username of the VM
      /root/Desktop/word_list.txt => path to word list
     192.168.8.102 => IP address of VM
     ssh => post that we trying dictionary attack



5.      Login to VM using that password.
      Password found - segreto@ctf123



Comments

Popular posts from this blog

Introduction to Encryption

RESTful API

How to do a Phishing attack on Facebook?