THC-Hydra & mdash; is one of the fastest and most reliable programs for checking the security and resistance of systems to brute force password recovery. It can also be used to recover forgotten passwords to any resource that uses a login pair and a password to login to the system.
The Hydra supports more than 50 different protocols and call formats as standard. But its main difference from the programs of this class, in addition to high speed and parallel searches in several threads & mdash; it is modularity, you can connect new components that provide support for the latest network devices and protocols. New modules can be found on the official website of the program, with third-party authors or write it yourself.
As a database of logins and passwords, the program uses special dictionaries, to improve the probability of successful selection you can specify masks, length and possible symbols, which they can consist of, in addition, there is a possibility to select software-generated passwords using several algorithms. The program can perform a parallel search on several protocols simultaneously. Average brute force attack speed of 900 passwords per second.
Here is a small list of protocols and devices that THC-Hydra can work with: HTTP, FTP, SMTP, POP3, IMAP, MySQL, NCP, NNTP, SOCKS, SSH, XMPP, Cisco and Mikrotik routers, network cameras, Simatic S7-300 controllers and much more. The user has access to Hydra versions for almost all operating systems, besides it is distributed with open source code, which means that any programmer can see how this or that function is implemented and make sure that there are no malicious inclusions in the code before the pentest.
The THC-Hydra is an excellent tool for researchers and security consultants to show how easy it is to gain unauthorized remote access to the system.
- high speed of operation;
- parallel password recovery on several protocols;
- IPv6 address space support;
- support for very large dictionaries (up to several gigabytes in size);
- Support for over 50 different services and protocols;
- open source code;