Brute Forcing

All you need is a good credential list and you're ready to go.

First, you need to find the endpoint you want to target:

Name

Endpoint

Web app

login page, Outlook mail, VPN, Router, Firewall, WordPress admin panel, etc

SSH

Port:22

RDP

Port:3389

VNC

Port:5900

FTP

Port:21

Telnet

Port:23

Default Credentials

Based on service brute force, try default usernames and passwords in SecList.

use Google to search for non-existing services.

Brute Forcing

Use the tool Hydra to perform a brute-force attack.

PreviousDatabases NextBurp Suite

Last updated 1 year ago