Hydra To Know Root Password Of My Router

i need to know how to set hydra in order to get the correct result of my router

Code:
hydra 192.168.1.1 -l accountid -p accountpw http-post-form "/cgi-bin/sysconf.cgi?page=login.asp&action=login:user_name=^USER^&user_passwd=^PASS^:/loginFailed.asp" -f -vV -e nsr

and this is the source login page where i type the accountid and the accountpw to view the status

http://pastebin.com/ZqhDzDQY


Similar Content



Need Help, Compiling Hydra On Cygwin Make Error, Installed Packages But Still Get Err

Hi im extremely new to theese things and spent all night trying to do this since, my dad wont let me login to the router so i can forward my ps4 ports, since i expereience extreme delay in gameplay about 1/4 of a second, so im trying to use hydra on cygwin so far i gotten to make step, but i keep getting this error code,

gcc -I. -Wall -O2 -o pw-inspector pw-inspector-logo.o pw-inspector.c
gcc: error: pw-inspector-logo.o: No such file or directory
Makefile:61: recipe for target 'pw-inspector' failed
make: [pw-inspector] Error 1 (ignored)
gcc -I. -Wall -O2 -c hydra-vnc.c -DHAVE_MATH_H
gcc: error: spawn: No such file or directory
Makefile:64: recipe for target 'hydra-vnc.o' failed
make: *** [hydra-vnc.o] Error 1

now do i need to download any packages? or another command please help me out im so close but im only learnt this over night! it would be extremely gratefull

Why Vsftp Can Do It, But Openssh Sftp Cannot ? (chroot)

Dear all,

This is long story cut short, with vsftp, if i set this parameters in the vsftp.conf file below

Code:
local_enable=YES
chroot_local_users=YES

I am able to login to the ftp account, see and list my home/user directory, and if i do a cd / or cd .. , i will still be chroot to my /home/user directory.

without, the need to chmod or or chown anything to my /home/user directory

=============================================

With openSSH, internal_sftp, even though I have set the sshd_conf to

Code:
Match user alankoh
X11Forwarding no
AllowTcpForwarding no
ForceCommand internal-sftp
ChrootDirectory /home/%u

I will need to change owner my /home/user directory to have root becomes it owner.
============================================

Q1) why this difference ? How does vsftp chroot without changing the /home/user folder ownership ?

Q2) i realize that openssh ChrootDirectory parameter causes my default login directory to be set as that of the parameter.
(e.g. if i set to "/whatever/xyz", i will be brought to that /whatever/xyz everytime i login to the sftp instead of my /home/user folder.

Why ? I thought that ChrootDirectory is just a security measure to specify the directory to go to in case the user cd to root (e.g. cd /), else not, i should still go to my /home/user folder everytime i login to sftp.

Regards,
Noob

File Upload From Putty To A Secured Website

->Need to upload a file from Unix box(Putty) to a website.

->Tried Wget and curl to upload a file to that website, when ever i am trying to fire the command its redirecting to Login page.

->for this purpose i have used cookies option to pass the Login information next time, but its giving empty cookie file and returning entire HTML page.

->used various options like redirecting,load cookies, for wget and curl, but everything is going in vain.

->Normally browser login process for that website is :

1.Login page www.example1.com/login and provide username and password
2.redirected to another URL www.example2.asp and after clicking on a folder icon.
3.it is getting redirected to another URL www.example3.com/folders.do?id=12433434324

i have to upload the file in the third URL and to a particular folder in that page, folders are containing different ids.

Please share your knowledge on this and provide solution as best as you can ,thanks

Having Issues With Making Use Of Linux On Vmware.

Hi, I downloaded an ISO linux file for my Vmware it was with a read me file that show the login details into the OS. Now have finished the installation of the ISO on my Vmware but the problem I have is it not accepting the login details that came with the ISO I download.
this was the login that came with the ISO:

standard user:
username: user
password: password

administrative user:
username: root
password: password
It not accepting any of it I want to know if I did something wrong or there is master login deatils I can use to get to the desktop.
Am a real newbie this is my first time of dealing with Linux your answers will be appreciated a lot. Thanks.

SSH Error

I am trying to login to my linux server. I was initially doing "ssh hostname". The login did not work, so I tried "ssh username@IP", which still prompted me with the yes/no prompt, but I received this error:

Code:
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@    WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!     @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the RSA key sent by the remote host is
XX:XX...:XX.
Please contact your system administrator.
Add correct host key in /Users/user/.ssh/known_hosts to get rid of this message.
Offending RSA key in /Users/user/.ssh/known_hosts:5
RSA host key for 192.168.1.3 has changed and you have requested strict checking.
Host key verification failed.

How Can I Remove Duplicated Lines On A File?

Hi

I am using this command to get some info about bots/spiders from my Centos server access.log file:

Code:
grep 'spider\|bot' access.log | sort -u -f >> bots.txt

Result is like this (i know pingdom is not bad):

Code:
141.101.105.102 - - [28/Mar/2015:01:59:56 +0200] "GET / HTTP/1.1" 200 24194 "-" "Pingdom.com_bot_version_1.4_(http://www.pingdom.com/)"
141.101.105.158 - - [28/Mar/2015:02:09:56 +0200] "GET / HTTP/1.1" 200 24260 "-" "Pingdom.com_bot_version_1.4_(http://www.pingdom.com/)"
141.101.105.102 - - [28/Mar/2015:02:19:56 +0200] "GET / HTTP/1.1" 200 24277 "-" "Pingdom.com_bot_version_1.4_(http://www.pingdom.com/)"
108.162.215.53 - - [27/Mar/2015:23:13:21 +0200] "GET /user/74595-tery1/?tab=idm HTTP/1.1" 200 3905 "-" "Sogou web spider/4.0(+http://www.sogou.com/docs/help/webmasters.htm#07)"
108.162.215.53 - - [27/Mar/2015:23:11:59 +0200] "GET /user/275904-ktlk21/ HTTP/1.1" 200 3805 "-" "Sogou web spider/4.0(+http://www.sogou.com/docs/help/webmasters.htm#07)"
108.162.215.75 - - [27/Mar/2015:23:21:31 +0200] "GET /user/74595-tery1/?tab=topics HTTP/1.1" 200 13588 "-" "Sogou web spider/4.0(+http://www.sogou.com/docs/help/webmasters.htm#07)"

Is there any command that can remove duplicate lines if the ip and the user-agent is the same on each line?

To get something like:

Code:
141.101.105.102 - - [28/Mar/2015:01:59:56 +0200] "GET / HTTP/1.1" 200 24194 "-" "Pingdom.com_bot_version_1.4_(http://www.pingdom.com/)"
141.101.105.158 - - [28/Mar/2015:02:09:56 +0200] "GET / HTTP/1.1" 200 24260 "-" "Pingdom.com_bot_version_1.4_(http://www.pingdom.com/)"
108.162.215.53 - - [27/Mar/2015:23:11:59 +0200] "GET /user/275904-ktlk21/ HTTP/1.1" 200 3805 "-" "Sogou web spider/4.0(+http://www.sogou.com/docs/help/webmasters.htm#07)"
108.162.215.75 - - [27/Mar/2015:23:21:31 +0200] "GET /user/74595-tery1/?tab=topics HTTP/1.1" 200 13588 "-" "Sogou web spider/4.0(+http://www.sogou.com/docs/help/webmasters.htm#07)"

Or if there is no way for this then to get only one line (even if different ip's exist for each user agent) like:

Code:
141.101.105.102 - - [28/Mar/2015:01:59:56 +0200] "GET / HTTP/1.1" 200 24194 "-" "Pingdom.com_bot_version_1.4_(http://www.pingdom.com/)"
108.162.215.53 - - [27/Mar/2015:23:11:59 +0200] "GET /user/275904-ktlk21/ HTTP/1.1" 200 3805 "-" "Sogou web spider/4.0(+http://www.sogou.com/docs/help/webmasters.htm#07)"

Cannot Login As A Different User Than The One Created At Installation Time

I have created a new user with "useradd" than changed the password with "passwd" (logged in as an administrator). After that I tried to login as the new user but couldn't. Error message was: "call to lnusertemp failed (temporary directories full?). Check your installation".

I currently use Debian 8.

I checked the home directory and couldn't find a new created folder for the new user (wasn't supposed to be done automatically by useradd?) and I checked the etc/password and there was the new user name inside it though.

What should I do? I really need to have more than one user on this computer...

Iptables --policy (login Slow)

Dear all,

This is my current iptables (with default policy = Accept) and no rules.
Code:
[root@racnode1 ~]# iptables -L -v
Chain INPUT (policy ACCEPT 77072 packets, 7890K bytes)
 pkts bytes target     prot opt in     out     source               destination         

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         

Chain OUTPUT (policy ACCEPT 70306 packets, 129M bytes)
 pkts bytes target     prot opt in     out     source               destination         
[root@racnode1 ~]#

I have decided to allow only incoming network connection from my own subnet and hence

Code:
[root@racnode1 ~]# iptables -A INPUT -s 192.168.0.0/24 -j ACCEPT
[root@racnode1 ~]# iptables -L -v
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         
  178  9055 ACCEPT     all  --  any    any     192.168.0.0/24       anywhere            

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         

Chain OUTPUT (policy ACCEPT 186 packets, 316K bytes)
 pkts bytes target     prot opt in     out     source               destination         
[root@racnode1 ~]#

Noted that my default policy is still ACCEPT, hence I

Code:
[root@racnode1 ~]# iptables --policy INPUT DROP

===============================================================

Upon this, I have 2 issues

a) my iptables -L -v command can't display fully, i am stuck at below

Quote:
[root@racnode1 ~]# iptables -L -v
Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
b) my ssh login is very slow

Quote:
login as: root
-- waited quite sometime before prompting me for password
===============================================================

If i removed revert the INPUT policy to ACCEPT, then everything will be fine as normal.

Why ?

Thanks and look forward to your advises.

Regards,
Noob ;(

No UTMPX Entry, You Must EXEC "login" For The Lowest "shell"

I have this message in Suns 5.10 sparce server ( No UTMPX entry, You must EXEC "login" for the lowest "shell" ) and then I can't access to the server at all . When I write the password the page disappeared . So pls help me how to solve this problem... Thanks a lot

Jamal

What Does Su -l Do...and Why Would You Have To Sudo It

hi guys,

saw a video where the instructor wanted to login as root

he went...

sudo su -l

i see the -l option is -l, --login
Start the shell as a login shell with an environment similar
to a real login:

but i dont understand the significance of this...why couldnt you just go
su
login