LinuxCommandLibrary

ncrack

TLDR

Crack SSH login

$ ncrack -p [22] --user [root] -P [wordlist.txt] [192.168.1.1]
copy
Crack multiple services
$ ncrack [ssh://192.168.1.1,ftp://192.168.1.2]
copy
Use username list
$ ncrack -U [users.txt] -P [passwords.txt] [ssh://target]
copy
Set timing template
$ ncrack -T[4] [ssh://target]
copy
Read targets from file
$ ncrack -iL [hosts.txt] -p [22] --user [admin]
copy
Save results to file
$ ncrack -oN [results.txt] [ssh://target] -U [users.txt] -P [passwords.txt]
copy

SYNOPSIS

ncrack [options] [target...]

DESCRIPTION

Ncrack is a high-speed network authentication cracking tool. It supports multiple protocols including SSH, RDP, FTP, Telnet, HTTP, and more.
Designed by Nmap developers, ncrack uses a modular architecture allowing new protocol modules.

PARAMETERS

-p ports

Target ports.
--user user
Single username.
-U file
Username list.
-P file
Password list.
-T 0-5
Timing template.
-iL file
Input target list.
-oN file
Normal output.
-oX file
XML output.
-v
Verbose.

SUPPORTED PROTOCOLS

$ ssh, rdp, ftp, telnet
http, https, pop3, imap
smb, vnc, sip, redis
mongodb, cassandra, mssql
copy

CAVEATS

Use only with authorization. May trigger security alerts. Account lockouts possible. Rate limiting recommended.

HISTORY

Ncrack was developed by the Nmap Project team, initially released in 2009 as a network authentication cracking tool complementing Nmap.

SEE ALSO

hydra(1), medusa(1), nmap(1), john(1)

Copied to clipboard