General Syntax:
hydra -l <username> -P <password-list> <target-ip> <protocol>
SSH:
hydra -l <username> -P <password-list> <target-ip> ssh
HTTP (GET):
hydra -l <username> -P <password-list> <target-ip> http-get
HTTP (POST):
hydra -l <username> -P <password-list> <target-ip> http-post-form "/login.php:username=^USER^&password=^PASS^:F=incorrect"
FTP:
hydra -l <username> -P <password-list> <target-ip> ftp
MySQL:
hydra -l <username> -P <password-list> <target-ip> mysqlTo use multiple usernames, create a file with usernames (one per line) and use the -L option:
hydra -L <username-file> -P <password-list> <target-ip> sshTo specify a custom port, use the -s option:
hydra -l <username> -P <password-list> -s <port> <target-ip> sshTo increase the number of parallel tasks, use the -t option:
hydra -l <username> -P <password-list> -t 16 <target-ip> sshUse the -v option to get more detailed output:
hydra -l <username> -P <password-list> -v <target-ip> sshSave progress and restore later:
hydra -l <username> -P <password-list> <target-ip> ssh -o output.txtTo resume from a session file, use:
hydra -R -o output.txtIf you have a specific password to try, use the -p option:
hydra -l <username> -p <specific-password> <target-ip> sshFor forms that require more complex interaction:
hydra -l <username> -P <password-list> <target-ip> http-post-form "/login.php:username=^USER^&password=^PASS^:F=incorrect"Replace incorrect with the actual failure message from the login page.
To route through a proxy:
hydra -l <username> -P <password-list> -p <proxy> <target-ip> sshTo attack multiple targets, list the targets in a file and use the -M option:
hydra -l <username> -P <password-list> -M <targets-file> sshSave output to a file for later analysis:
hydra -l <username> -P <password-list> <target-ip> ssh -o results.txtTo see all available options, run:
hydra -hRefer to the official Hydra documentation for more details.
1. Brute Force SSH Login:
hydra -l admin -P /path/to/passwords.txt 192.168.1.100 ssh