Great to see you starting off this year with amazing content Gary ! What's your take on different tools for Bruteforcing,lets say we have hydra,John the ripper and hashcat,how do you ideally choose between them I'm kinda confused sometimes,does it depends upon what exactly we looking for ?
Yeah I’m recording a Hashcat video very soon. Hashcat is mainly used if you get hashes from say /etc/passwd or anywhere else for that matter, and you want to crack them. You can do it really cheap in the cloud these days. Hydra is great for CTFs and things like that, but you can’t really have much success on enterprise systems because of MFA and Fail2Ban etc. John the Ripper is similar to Hashcat in many ways at a basic level.
Thank you for sharing your knowledge! I followed the steps of the video and always get 16 valid passwords, none of which were actually the correct one. Where should I start to solve this problem ?
@@theGaryRuddell ho provato contattare con il supporto su Xbox Microsoft. Hanno detto che non si può recuperare account. Quindi il tuo video si può recuperare l'account Outlook?
Hello I have two problems. I look for my password but I don't need to have a login. I only need a password to log in. So how I do to make an attack without the flag -l or -L. Morover my request body for the http-post-form is "username=admin&password=c9bcacd403244145cea61db556e9efd0" and hydra say that "the variables argument needs at least the strings ^USER^, ^PASS^, ^USER64^ or ^PASS64^. I don't kwon how to do. Can you help me ?
Out of curiosity, if you tried to hack Google or Facebook or any other majorly reputable company that'd get you jailed for years, would you get caught if you're running the brute force program for a login page through kali linux in a virtual machine?
@@theGaryRuddell both are on 100% and i got a notification and it scared me as it was so loud, its just youtube is acting weird. and it affect other videos too..
I swear RUclips algorithms are spying on me. Your video is timely. Just went over this topic in TCM's class.
Oh the algorithm is DEFINITELY working the magic!
BurpSutie is a great tool to know. You can do so much with it.
Yeah it’s incredible. There’s really not a competitor I know of??
Explained burp better then when I tried to do it for a class 😅
simple and quick.. thanks a lot
You're welcome!
Another Great video Gary
Glad you enjoyed it pal!
Great to see you starting off this year with amazing content Gary !
What's your take on different tools for Bruteforcing,lets say we have hydra,John the ripper and hashcat,how do you ideally choose between them I'm kinda confused sometimes,does it depends upon what exactly we looking for ?
Yeah I’m recording a Hashcat video very soon. Hashcat is mainly used if you get hashes from say /etc/passwd or anywhere else for that matter, and you want to crack them. You can do it really cheap in the cloud these days. Hydra is great for CTFs and things like that, but you can’t really have much success on enterprise systems because of MFA and Fail2Ban etc. John the Ripper is similar to Hashcat in many ways at a basic level.
@@theGaryRuddellOkay got it thanks 👍🏻
Nice video, Gary! Do you mind if I write a short blog post based on this video? I will mention the source. 🙂
Yeah sure! I’d love to see where you share it in the end. I’m on LinkedIn too if it’s easier to talk there 😊
@@theGaryRuddell Thank you, Gary. I will share it on LinkedIn. 🙂
KEEP UP THE GOOD WORK
Thank you so much!!
Thank you for sharing your knowledge! I followed the steps of the video and always get 16 valid passwords, none of which were actually the correct one. Where should I start to solve this problem ?
Hey it’s hard to say from here! But I’d recommend watching other tutorials to see if something clicks!
🙂 thank you
You’re welcome 😊
💙
💚
whatever I do I can't get username=test&password=test&login=login to show up
ciao, io sono stato hackerato su outlook. Ho seguito il tuo video che si può fare su outlook?
Grazie per la visione, se vieni violato su Outlook, dovrai parlare con il supporto Microsoft.
@@theGaryRuddell ho provato contattare con il supporto su Xbox Microsoft. Hanno detto che non si può recuperare account. Quindi il tuo video si può recuperare l'account Outlook?
@@gerdmuller8258 Se Microsoft non riesce a recuperare un account compromesso, nessun altro può farlo. Scusa amico!
What is the format if website start from https mean secure
Sorry I don’t understand the question
Early :3
Hello I have two problems. I look for my password but I don't need to have a login. I only need a password to log in. So how I do to make an attack without the flag -l or -L. Morover my request body for the http-post-form is "username=admin&password=c9bcacd403244145cea61db556e9efd0" and hydra say that "the variables argument needs at least the strings ^USER^, ^PASS^, ^USER64^ or ^PASS64^. I don't kwon how to do. Can you help me ?
Try using another tool like Brutus or Burp Suite. I’m not sure on this one!
@@theGaryRuddell Ok but do you know how I can do if I only need a password to log in and not a login ? How can I process ?
Brutus and Burp have that functionality!
@@theGaryRuddell ok thank you. I will test them later.
c9bcacd403244145cea61db556e9efd0 cracked: fzfzfz 😁
What about the app that I download how to find the name and password
Out of curiosity, if you tried to hack Google or Facebook or any other majorly reputable company that'd get you jailed for years, would you get caught if you're running the brute force program for a login page through kali linux in a virtual machine?
Yes. You certainly would if you pushed hard enough.
@theGaryRuddell what if the request is run through a vpn and/or tor browser while inside the VM?
Try it and find out? 😝 brute forcing is dumb
I’m so confused, lol. Can I like email you with questions?
They’ll be too hard to answer. Best option is chatGPT and you can feed it any error messages
you did not cover the other important aspect re users and passwords files. Where/how did you get them?
Correct. I did not. Have you Googled “where can I find username and password combinations”?
will this work to hack an old Gmail account? if yes how? forgot the password to my old Gmail account.
Whether it’s an old account or not, you’re hacking Google. That’s stupid. Just email customer support and prove it’s your old account.
UGH!!!!!!! I keep getting MITM detected.
Kali Linux,Can I hack Facebook account suing this
😂 you want to go to prison for 20 years?
@@theGaryRuddell yes
@@theGaryRuddell please help me
why is the audio so quiet even at 100% volume ;//////
It isn’t for me. Make sure your RUclips volume AND your computer volume are right?
@@theGaryRuddell both are on 100% and i got a notification and it scared me as it was so loud,
its just youtube is acting weird. and it affect other videos too..
@PCs454 😂
Yeah it works fine for all of my devices.
Hi, i sent you an email, if you are able to reply, it would be great!
Great chatting with you 😊