{"id":252,"date":"2012-11-03T21:05:05","date_gmt":"2012-11-03T21:05:05","guid":{"rendered":"http:\/\/www.gironsec.com\/blog\/?p=252"},"modified":"2012-11-06T04:49:31","modified_gmt":"2012-11-06T04:49:31","slug":"brutus-2-elecitric-boogaloo","status":"publish","type":"post","link":"https:\/\/www.gironsec.com\/blog\/2012\/11\/brutus-2-elecitric-boogaloo\/","title":{"rendered":"Brutus 2 – Elecitric Boogaloo"},"content":{"rendered":"

Howdy all!<\/p>\n

Who here remembers Brutus? That C++ app that allows for rapid brute forcing of FTP \/ HTTP Basic Auth stuff? That app that gets picked up by EVERY AV under the sun?
\nWell I remember it quite well. It helped me get into a number of boxes back in the day. To show my love for it, I’ve decided to recode the entire thing (since source was never made available) in .NET for the next generation of peoples.<\/p>\n

I however have other plans with this tool. More functionality. I could make a talk out of this.
\nThe most ‘fun’ however has been with attempting to multithread this. Pic related.
\n\"\"<\/a><\/p>\n

Like I said, I want to add more features to it. Brutus was made before the other protocols were made popular such as SSH, Mysql, LDAP, Smtp, Imap, Pop3, and now Web Services.
\n\"\"<\/a>
\nThe ‘site-mode’ is different from traditional brute forcers in that it uses the GET \/ POST methods of HTTP to send form variables. The ‘Success Text’ is a regular expression matched string that’s used to determine if the attack succeeded. The source of the returned page is scanned for this ‘Success Text’.<\/p>\n

You can download the alpha here. Right now only Basic Auth works. Site mode kind of works, but not very well (SLOOOOOOOOOOW and picky).
\nBrutus_2_electric_boogaloo<\/a><\/p>\n

Work has been a little slow, so I am getting more and more time to work on this. Check back often.
\n\"\"<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Howdy all! Who here remembers Brutus? That C++ app that allows for rapid brute forcing of FTP \/ HTTP Basic Auth stuff? That app that gets picked up by EVERY AV under the sun? Well I remember it quite well. It helped me get into a number of boxes back in the day. To show […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[4,6],"tags":[31,29,30,34,32,33],"_links":{"self":[{"href":"https:\/\/www.gironsec.com\/blog\/wp-json\/wp\/v2\/posts\/252"}],"collection":[{"href":"https:\/\/www.gironsec.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.gironsec.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.gironsec.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.gironsec.com\/blog\/wp-json\/wp\/v2\/comments?post=252"}],"version-history":[{"count":5,"href":"https:\/\/www.gironsec.com\/blog\/wp-json\/wp\/v2\/posts\/252\/revisions"}],"predecessor-version":[{"id":261,"href":"https:\/\/www.gironsec.com\/blog\/wp-json\/wp\/v2\/posts\/252\/revisions\/261"}],"wp:attachment":[{"href":"https:\/\/www.gironsec.com\/blog\/wp-json\/wp\/v2\/media?parent=252"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.gironsec.com\/blog\/wp-json\/wp\/v2\/categories?post=252"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.gironsec.com\/blog\/wp-json\/wp\/v2\/tags?post=252"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}