The Wayback Machine - https://web.archive.org/web/20201105113857/https://github.com/topics/brute-force-attacks
Skip to content
#

brute-force-attacks

Star

Here are 148 public repositories matching this topic...

Language: All
Filter by language
All 148 Python 68 PHP 13 JavaScript 10 C 8 Shell 7 Perl 6 Java 5 C++ 3 Go 3 HTML 3
Sort: Best match
Sort options
Best match Most stars Fewest stars Most forks Fewest forks Recently updated Least recently updated

vanhauser-thc / thc-hydra

Star
Open

Hydra not decoding ^USER^ and ^PASS^ when passed as HTTP Headers

5
jhertz
jhertz commented Apr 17, 2020

Hi All,

So I'm trying to use hydra to bruteforce a login on a system that uses custom http headers to receive the username and password. Hydra does not seem to be doing substitution of ^USER^ and ^PASS^ when used as HTTP headers. If I issue issuing a call to hydra like this:

hydra "http-post://0.0.0.0:8000/:H=username\:^USER^:H=password\:^PASS^" -l admin -p admin

I see the following r

Read more
enhancement good first issue help wanted

Improve this page

Add a description, image, and links to the brute-force-attacks topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the brute-force-attacks topic, visit your repo's landing page and select "manage topics."

Learn more

You can’t perform that action at this time.