silentbridge
thc-hydra
silentbridge | thc-hydra | |
---|---|---|
3 | 18 | |
215 | 9,073 | |
- | - | |
0.0 | 5.6 | |
11 months ago | 5 days ago | |
C | C | |
GNU General Public License v3.0 only | GNU Affero General Public License v3.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
silentbridge
-
How to Build the Perfect Red Team Hardware Implant
I don’t handle the drop boxes at my work but I do know for nac bypass we use SilentBridge https://github.com/s0lst1c3/silentbridge currently, although we are evaluating different solutions.
-
Has anyone here attempted to build the mechanical switch Silentbridge rogue device?
I'm trying to build a RPI rogue device for bypassing 802.1x during Red Teaming engagement, that is based on Silentbridge. We have had some success with the basic version, but we have been caught and blocked several times due to a newer 802.1x in place, which should also be bypassable with an addition of passive network tap and AB switching.
-
Need help with setting up an OpenWRT router for wired 802.1x?
As a part of pentest engagement I'm working on I've been tasked with setting up an implant/dropbox that will be plugged into the customer's network and left behind as a 4G backdoor. The network is using 802.1x for port authentication, and I need to create a lab to test whether the device (a RPi running silentbridge) is working correctly and can bypass the port security.
thc-hydra
-
Show HN: Hydra - Open-Source Columnar Postgres
Nice tool, only unfortunate name, consider changing it. Already very well know security tool named hydra https://github.com/vanhauser-thc/thc-hydra been around since 2001. Then facebook went ahead and named their config tool hydra https://github.com/facebookresearch/hydra on top of it. Like we get it, hydra popular mythology but we could use more original naming for tools
- Help with a brute force tool
-
What's everyone working on this week (26/2023)?
I just started learning Rust, but I will begin building a brute-force tool. Hydra is great but lacks updates, IMHO. I started using Golang, but it sucks (I love the Go language, but it sucks for this type of task).
-
The 36 tools that SaaS can use to keep their product and data safe from criminal hackers (manual research)
Hydra
- Unable to complete libssh2 handshake
-
Password Attacks - Network Services
Hydra (https://github.com/vanhauser-thc/thc-hydra) starting at 2023-01-28 16:31:17 [WARNING] the rdp module is experimental. Please test, report - and if possible, fix. [WARNING] Restorefile (ignored ...) from a previous session found, to prevent overwriting, ./hydra.restore [DATA] max 3 tasks per 1 server, overall 3 tasks, 21112 login tries (l:104/p:203), ~7038 tries per task [DATA] attacking rdp://10.129.202.136:3389/ [STATUS] 166.00 tries/min, 166 tries in 00:01h, 20946 to do in 02:07h, 3 active [STATUS] 121.67 tries/min, 365 tries in 00:03h, 20747 to do in 02:51h, 3 active [3389][rdp] account on 10.129.202.136 might be valid but account not active for remote desktop: login: password: , continuing attacking the account. [STATUS] 86.29 tries/min, 604 tries in 00:07h, 20509 to do in 03:58h, 2 active [ERROR] all children were disabled due too many connection errors 0 of 1 target completed, 0 valid password found [INFO] Writing restore file because 2 server scans could not be completed [ERROR] 1 target was disabled because of too many errors [ERROR] 1 targets did not complete Hydra (https://github.com/vanhauser-thc/thc-hydra) finished at 2023-01-28 16:38:23
- Could use some help
- Github hydra scripts
-
THC-Hydra in Rust FOSS Project
I am searching for people interested in coding an alternative to the thc-hydra project, with additional features (implementing the Shodan api to make it automated, etc...)
-
THM HackPark
Hydra (https://github.com/vanhauser-thc/thc-hydra) starting at 2022-10-22 13:09:13
What are some alternatives?
tap - The TrustedSec Attack Platform is a reliable method for droppers on an infrastructure in order to ensure established connections to an organization.
naive-hashcat - Crack password hashes without the fuss :cat2:
Metasploit - Metasploit Framework
SQLMap - Automatic SQL injection and database takeover tool
elpscrk - An Intelligent wordlist generator based on user profiling, permutations, and statistics. (Named after the same tool in Mr.Robot series S01E01)
mimikatz - A little tool to play with Windows security
PSKracker - An all-in-one WPA/WPS toolkit
RustScan - 🤖 The Modern Port Scanner 🤖
bruteforce-database - Bruteforce database
scapy - Scapy: the Python-based interactive packet manipulation program & library.
john - John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs
Network-segmentation-cheat-sheet - Best practices for segmentation of the corporate network of any company