Advanced Nmap | Security Aegis
Ncrack
Ncrack is a command line password bruteforcer like hydra and medusa. Up until recently I was a stalwart Medusa user but what brought me over (mostly) was the superior SSH library, RDP password bruting, and easy nmap-like syntax. Should you want to audit a whole class C for ssh passwords Ncrack makes this easy:
1ncrack scanme.nmap.org/24 -p 22Ncrack supports the following protocols:
- FTP
- TElNET
- SSH
- RDP
- HTTP(S)
- SMB
- POP3(s)
My buddy Jason (@JHaddix) has just posted about some of the lesser-known abilities of nmap. Definitely have a look at the whole thing if this is your world.
