hydra

fast network login cracker supporting many protocols

TLDR

Brute force SSH

$ hydra -l [user] -P [passwords.txt] ssh://[target]

HTTP form brute force

$ hydra -l [admin] -P [pass.txt] [target] http-post-form "/login:user=^USER^&pass=^PASS^:Invalid"

FTP brute force

$ hydra -L [users.txt] -P [pass.txt] ftp://[target]

Specify threads

$ hydra -t [4] -l [user] -P [pass.txt] [target] [service]

Verbose output

$ hydra -v -l [user] -P [pass.txt] [target] ssh

SYNOPSIS

hydra [options] target service

Hydra is a parallelized network login cracker used in authorized penetration testing and security auditing. It systematically attempts username and password combinations against remote authentication services, drawing credentials from user-supplied wordlists or single values. Multiple connection threads run in parallel (configurable with `-t`), allowing it to test a large number of combinations efficiently.
Hydra supports over 50 protocols and services out of the box, including SSH, FTP, HTTP/HTTPS (basic auth, form-based, and digest), SMB, RDP, MySQL, PostgreSQL, SMTP, IMAP, LDAP, VNC, and many more. For web applications, its `http-post-form` and `http-get-form` modules accept custom request templates with placeholder markers for injecting credentials. Results can be saved to a file for later analysis, and the tool can resume interrupted sessions.

PARAMETERS

TARGET

Target host.

SERVICE

Service to attack (ssh, ftp, http-post-form).

-l LOGIN

Single username.

-L FILE

Username list.

-p PASS

Single password.

-P FILE

Password list.

-t NUM

Parallel connections.

-v

Verbose output.

--help

Display help information.

CAVEATS

Authorized testing only. May trigger lockouts. Use responsibly.

HISTORY

Hydra was developed by THC (The Hacker's Choice) as a comprehensive network authentication testing tool.