"""
HYDRA(1) General Commands Manual HYDRA(1)
NAME
hydra - a very fast network logon cracker which support many different services
一个非常快速的网络登录破解器,它支持多种不同的服务。
SYNOPSIS
概要
hydra
[[[-l LOGIN|-L FILE] [-p PASS|-P FILE|-x OPT -y]] | [-C FILE]]
[-e nsr] [-u] [-f|-F] [-M FILE] [-o FILE] [-b FORMAT]
[-t TASKS] [-T TASKS] [-w TIME] [-W TIME] [-m OPTIONS] [-s PORT]
[-c TIME] [-S] [-O] [-4|6] [-I] [-vV] [-d]
server service [OPTIONS]
DESCRIPTION
描述
Hydra is a parallelized login cracker which supports numerous protocols
to attack. New modules are easy to add, beside that, it is flexible and
very fast.
Hydra是一个并行登录破解程序,支持多种攻击协议。新的模块很容易添加,
除此之外,它是灵活的,非常快。
This tool gives researchers and security consultants the possibility to
show how easy it would be to gain unauthorized access from remote to a
system.
此工具为研究人员和安全顾问提供了展示从远程访问系统进行未经授权的访问有多容易的可能性。
Currently this tool supports:
当前此工具支持
adam6500 afp asterisk cisco cisco-enable cvs firebird ftp ftps
http[s]-{head|get|post} http[s]-{get|post}-form http-proxy http-
proxy-urlenum icq imap[s] irc ldap2[s] ldap3[-{cram|di‐
gest}md5][s] mssql mysql(v4) mysql5 ncp nntp oracle oracle-lis‐
tener oracle-sid pcanywhere pcnfs pop3[s] postgres rdp radmin2
redis rexec rlogin rpcap rsh rtsp s7-300 sapr3 sip smb smtp[s]
smtp-enum snmp socks5 ssh sshkey svn teamspeak telnet[s] vmauthd
vnc xmpp
For most protocols SSL is supported (e.g. https-get, ftp-ssl, etc.).
If not all necessary libraries are found during compile time, your
available services will be less. Type "hydra" to see what is avail‐
able.
大多数协议都支持SSL(例如https-get、ftp-ssl等)。
如果在编译期间没有找到所有必需的库,那么可用的服务就会更少。键入“Hydra”以查看可用的内容。
Options
target a target to attack, can be an IPv4 address, IPv6 address or DNS name.
针对要攻击的目标,可以是IPv4地址、IPv6地址或DNS名称
service
a service to attack, see the list of protocols available
要攻击的服务,请参阅可用的协议列表
OPTIONAL SERVICE PARAMETER 可选服务参数
Some modules have optional or mandatory options. type "hydra -U <servicename>"
to get help on on the options of a service.
某些模块具有可选或必选项。键入“HOLRA-U<servicename>”以获取有关服务选项的帮助。
-R restore a previously aborted session. Requires a hydra.restore
file was written. Options are restored, but can be changed by
setting them after -R on the command line
恢复以前中止的会话。需要hydra.restore文件已写入。
选项已恢复,但可以通过在命令行上将其设置在-R之后进行更改
-S connect via SSL
-O use old SSL v2 and v3
-s PORT
if the service is on a different default port, define it here
如果服务位于不同的默认端口上,请在此处定义它
-l LOGIN
or -L FILE login with LOGIN name, or load several logins from FILE
或-L文件使用登录名登录,或从文件加载多个登录
-p PASS
or -P FILE try password PASS, or load several passwords from FILE
或-P文件尝试密码传递,或从加载几个密码
-x min:max:charset
generate passwords from min to max length. charset can contain 1
for numbers, a for lowcase and A for upcase characters.
Any other character is added is put to the list.
生成从最小长度到最大长度的密码。Charset可以包含1表示数字,a表示小写,A表示大写字符。
任何其他字符被添加到列表中。
Example: 1:2:a1%.
The generated passwords will be of length 1 to 2 and contain
lowcase letters, numbers and/or percent signs and dots.
生成的密码长度为1到2,并包含小写字母、数字和百分号和点。
-y disable use of symbols in -x bruteforce, see above
禁止使用-x brteforce中的符号,见上文
-e nsr additional checks, "n" for null password, "s" try login as pass,
"r" try the reverse login as pass
防火墙 附加检查,“n”表示空密码,“s”尝试通过登录,“r”尝试反向登录作为PASS
-C FILE
colon separated "login:pass" format, instead of -L/-P options
冒号分隔的“login:pass”格式,而不是-L/-P选项
-u by default Hydra checks all passwords for one login and then
tries the next login. This option loops around the passwords, so
the first password is tried on all logins, then the next pass‐
word.
默认情况下,Hydra检查一次登录的所有密码,然后尝试下一次登录。
此选项在密码周围循环,因此在所有登录时尝试第一个密码,然后尝试下一个密码。
-f exit after the first found login/password pair (per host if -M)
在第一个找到的登录名/密码对之后退出(每个主机如果-M)
-F exit after the first found login/password pair for any host (for
usage with -M)
在任何主机的第一个找到的登录/密码对之后退出(与-M一起使用)
-M FILE
server list for parallel attacks, one entry per line 并行攻击的服务器列表,每行一个条目
-o FILE
write found login/password pairs to FILE instead of stdout
将找到的登录/密码对写入文件而不是stdout
-b FORMAT
specify the format for the -o FILE: text(default), json, jsonv1
指定-o文件的格式:text(默认),json,jsonv1
-t TASKS
run TASKS number of connects in parallel (default: 16)
并行运行任务连接数(默认值:16)
-m OPTIONS
module specific options. See hydra -U <module> what options are
available.
模块特定选项。请参见hydra -U<module>哪些选项是可用的。
-w TIME
defines the max wait time in seconds for responses (default: 32)
定义响应的最大等待时间(以秒为单位)(默认值:32)
-W TIME
defines a wait time between each connection a task performs.
This usually only makes sense if a low task number is used, .e.g
-t 1
-c TIME
the wait time in seconds per login attempt over all threads (-t
1 is recommended) This usually only makes sense if a low task
number is used, .e.g -t 1
定义任务执行的每个连接之间的等待时间。这通常只有在使用较低的任务编号时才有意义,例如-t 1
-4 / -6
prefer IPv4 (default) or IPv6 addresses
-v / -V
verbose mode / show login+pass combination for each attempt 详细模式/显示每次尝试的登录+密码组合
-d debug mode 调试模式
-I ignore an existing restore file (don't wait 10 seconds) 忽略现有的还原文件(不要等待10秒)
-h, --help
Show summary of options. 显示选项摘要。
SEE ALSO
xhydra(1), pw-inspector(1).
The programs are documented fully by van Hauser <vh@thc.org>
AUTHOR
hydra was written by van Hauser / THC <vh@thc.org> Find new versions or
report bugs at https://github.com/vanhauser-thc/thc-hydra
This manual page was written by Daniel Echeverry <epsilon77@gmail.com>,
for the Debian project (and may be used by others).
01/01/2019 HYDRA(1)
网友评论