Cracking Router Password using THC Hydra in Backtrack [Tutorial]
Hello Friends.. !!
Sometime we found the only way to get access is brute-force. Ya I know it’s not a good choice but sometimes its only the way for us or we can say that it’s our last hope.
Today I am going to introduce you a tool named as THC hydra used for brute-force attacks. You can download it or if you are using backtrack then its already here.
Here I am going to show you how an attacker can crack routers password:
For this attacker will need /
1: Router’s IP Address
2: A good Dictionary File
Dictionary file can be grabbed by simple googling or you can make your own wordlist using crunch. You can see here that how to make your own wordlist.
Now find your router IP, you should already know this, mine is 192.168.2.2. Mostly default username for routers is admin and in my case its admin.
Step 1: Now open your terminal in backtrack (you can use hydra in windows too just download it from its official website and extract it in any directory)
Step 2: Run the following command :
hydra -l username -P password list path -s port IP Address http-get /
Run this command substituting in your values. Remember that commands flags are case sensitive. Now put all the values according to the above syntax. Here password is supposed to be written with its whole path if its not in the hydra directory.
My command looks like this..
Now it will take some time as you know its brute-force attack.
Now it will start processing which will look like this.
But don’t be confuse by this error in the screen just let it do and you will get username and password after sometime as below picture.
As you can see we got the username and password.
Now let see what this command is about:
hydra –> the hydra program
-l –> (lower case “L” not to be confused with a upper case i) single username to target. Use uppercase -L to specify a username list
-P –> provide path to password lis. -p to try a single password ie “passw0rd”
-s –> port to target your router may run on a different port such as 8080
IP Address hopefully this is clear
http-get –> service to brute force
“/” –> this specifies the page to target if this is left out the command will not run. “/” just indicates the root do not include the ”
you will get an output line with username and password if you are successful.
This attack is only as good as your dictionary.
Hope you liked this tutorial Thanks