Skip to main content

2 posts tagged with "Password Brute-forcing"

Password brute-forcing is the process of attempting every possible combination of characters (e.g., letters, numbers, symbols) to guess a password. This method is often used when other attacks are not successful, and can be very time-consuming for long or complex passwords. Password brute-forcing can be performed using various tools, such as Hydra.

THM | Password Attacks

January 19, 2025 · 27 min read

Red Teaming | Password Attacks | Summary:

This room is designed to teach about various strategies and techniques used in cracking or guessing passwords. It covers both offline and online methods, including dictionary and brute-force attacks, rule-based attacks, and custom rules.

The room emphasizes password profiling, teaching users how to create effective wordlists using default, weak, leaked, combined, and username sources.

Other topics include keyspace techniques, CUPP (Custom Password Profile), and online attacks targeting FTP, SMTP, SSH, and HTTP login pages. Additionally, it introduces the concept of password spraying attacks.

THM | Hydra

October 16, 2022 · 7 min read

CompTIA PenTest+ | Hydra | Summary:

This series of walkthroughs aims to help out complete beginners with finishing the CompTIA PenTest+ on the TryHackMe website. It is based on the learning content provided in the Hydra room.