Bruter 1.0 Released – Parallel Windows Password Brute Forcing Tool

Use Netsparker


Bruter 1.0 BETA 1 has been released. Bruter is a parallel login brute-forcer. This tool is intended to demonstrate the importance of choosing strong passwords. The goal of Bruter is to support a variety of services that allow remote authentication.

Bruter is a tool for the Win32 platform only.

PROTOCOL SUPPORT

It currently supports the following services:

  • FTP
  • HTTP (Basic)
  • HTTP (Form)
  • IMAP
  • MSSQL
  • MySQL
  • POP3
  • SMB-NT
  • SMTP
  • SNMP
  • SSH2
  • Telnet

DEPENDENCIES

You can download Bruter here:

Bruter_1.0_beta1.zip

Or read more here.

Posted in: Hacking Tools, Password Cracking, Windows Hacking

, , , ,


Latest Posts:


Insecure software versions are a problem Web Security Stats Show XSS & Outdated Software Are Major Problems
Netsparker just published some anonymized Web Security Stats about the security vulnerabilities their online solution identified on their users’ web applications and web services during the last 3 years.
CTFR - Abuse Certificate Transparency Logs For HTTPS Subdomains CTFR – Abuse Certificate Transparency Logs For HTTPS Subdomains
CTFR is a Python-based tool to Abuse Certificate Transparency Logs to get subdomains from a HTTPS website in a few seconds.
testssl.sh - Test SSL Security Including Ciphers, Protocols & Detect Flaws testssl.sh – Test SSL Security Including Ciphers, Protocols & Detect Flaws
testssl.sh is a free command line tool to test SSL security, it checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws and more.
Four Year Old libSSH Bug Leaves Servers Wide Open Four Year Old libssh Bug Leaves Servers Wide Open
A fairly serious 4-year old libssh bug has left servers vulnerable to remote compromise, fortunately, the attack surface isn't that big as neither OpenSSH or the GitHub implementation are affected.
CHIPSEC - Platform Security Assessment Framework CHIPSEC – Platform Security Assessment Framework For Firmware Hacking
CHIPSEC is a platform security assessment framework for PCs including hardware, system firmware (BIOS/UEFI), and platform components for firmware hacking.
How To Recover When Your Website Got Hacked How To Recover When Your Website Got Hacked
The array of easily available Hacking Tools out there now is astounding, combined with self-propagating malware, people often come to me when their website got hacked and they don't know what to do, or even where to start.


10 Responses to Bruter 1.0 Released – Parallel Windows Password Brute Forcing Tool

  1. goodpeople January 31, 2008 at 12:41 pm #

    Always good to see new tools coming. Wonder how it holds up against Cain & Abel and John the Ripper

  2. Pantagruel February 3, 2008 at 1:31 am #

    Too bad it’s windows only, preffered Cain and Abel anyway

    @Goodpeople, I didn’t know John (the ripper) was able to do brute force login attempts. Guess you really learn somethings here ;)

  3. goodpeople February 3, 2008 at 12:02 pm #

    I stand corrected.

    Ofcourse I was talking about pass-crackers in general, but you are right. JTR is not a brute forcer. Oversight on my part. I’m sorry.

    As a side note: that is what you get when you’re only teaching instead of actively using it. You have a truckload of general information in your head. You only read up on the details when you need them in your classes.

  4. eM3rC February 7, 2008 at 8:08 am #

    Someone should give bruter a run for its money when compared to C&A. Would be cool to see who wins.

    I’m not sure if it was this site or another blog but I saw a post about the development of brute forcing software that utilizes the video card channels as a way of speeding up the bruting process. That combined with the new cards on the market, increased RAM sizes and faster processors, bruting should go amazingly fast.

  5. Pantagruel February 12, 2008 at 5:34 pm #

    @eM3rC

    We indeed had a post on the usage of the GPU for more than just fancy video display.
    (https://www.darknet.org.uk/2007/11/graphics-cards-the-next-big-thing-for-password-cracking/)

    Indeed both Ati (CTM)and Nvidia (CUDA) are providing a programming dev kit for cuda enabled GPU (have a look at http://en.wikipedia.org/wiki/Close_to_Metal or http://www.nvidia.com/object/cuda_home.html ) for more info. The fundamentals of the two are different (assembler vs C) but results will be in the same range.

  6. eM3rC February 13, 2008 at 2:58 am #

    @Pantagruel
    Thanks for the links. Also took a look into the developer kits and found it very interesting that the companies are doing that now.

    Quick side note, nVidia is going to be making processors for mobile phones now :)

  7. eLmaS May 12, 2008 at 9:08 pm #

    Always good to see new tools coming. Wonder how it holds up against Cain & Abel and John the Rippe

  8. visar September 2, 2008 at 1:55 pm #

    this website is very good

  9. nick September 8, 2008 at 7:47 pm #

    does ne one know how you determine teh “protocol” type when using bruter? and when would you select the brute force option? wouldn’t it be every time?

  10. Marc November 18, 2008 at 4:02 pm #

    Hi Guys…

    Installed the app, but I keep getting “error… Invalid Target” Any thoughts on this one? Doesn’t matter where I go. Firewall is off and nothing else is running.

    Thanks,

    Marc