Medusa Parallel Network Login Auditor v2.0 released

In: Bruteforcers , Medusa , Password Cracking

16 February 2010

Medusa is intended to be a speedy, massively parallel, modular, login brute-forcer. The goal is to support as many services which allow remote authentication as possible.

The author considers following items as some of the key features of this application:

Thread-based parallel testing. Brute-force testing can be performed against multiple hosts, users or passwords concurrently.
Flexible user input. Target information (host/user/password) can be specified in a variety of ways. For example, each item can be either a single entry or a file containing multiple entries. Additionally, a combination file format allows the user to refine their target listing.
Modular design. Each service module exists as an independent .mod file. This means that no modifications are necessary to the core application in order to extend the supported list of services for brute-forcing.

Version 2.0

Medusa Core Updates:

- Pool-based thread handling
- Modules now request next credential set (username + password)
- Secondary user credential queue added for missed login tests.
- Host and User-level Resume
  Note: View "Changelog" for a full description.

Module Updates:

FTP

Misc. fixes

IMAP

Domain module option for BASIC/NTLM authentication types
Allow auth type to be specified
Misc. fixes (NTLM base64 length, restart HTTP connection after each request)
Domain module option for LOGIN/NTLM authentication types
Regex-based server response matching for better handling of slow targets
Misc. fixes (handle dropped connections, force TLSv1, base64 length)

MSSQL

Auto SQL port identification via "SQL Ping" technique

NCP

Misc. fixes (connection retry code)

POP3

Domain module option for NTLM authentication type
Regex-based server response matching for better handling of slow targets
Misc. fixes (base64 length)

SMTP

Regex-based server response matching for better handling of slow targets

SMTP-VRFY

Misc. fixes (don’t include "@" if no domain specified)

SSH

Detect and warn if being built on Debian/Ubuntu system (broken libssh2)

VMAUTHD

Regex-based server response matching for better handling of slow targets

Web-Form

Misc. fixes

WRAPPER

Misc. fixes (fix handling of short usernames/passwords)

More information: here

Post scriptum

Download Medusa v2.0

Bruteforcers	29 April 2010 : Fuzzdb v1.07 released 26 April 2010 : Bruter v1.0 - parallel network login brute-forcer 25 April 2010 : Fuzzdb updated to v1.06 19 April 2010 : fuzzdb v1.05 - Attack and Discovery Pattern Database 8 March 2010 : DirBuster v1.0 RC 1 - released
Medusa	16 February 2010 : Medusa Parallel Network Login Auditor v2.0 released 11 February 2009 : Medusa Parallel Network Login Auditor v1.5 released 31 October 2007 : Medusa V1.4 in the wild
Password Cracking	25 April 2010 : Aircrack-ng v1.1 released 3 April 2010 : CUPP Common User Passwords Profiler v3 released 25 March 2010 : PenTBox v1.3.2 FINAL released 27 February 2010 : John the Ripper updated to v1.7.5 12 February 2010 : WPA Rainbow Tables (Offensive Security)

Medusa Parallel Network Login Auditor v2.0 released

Post scriptum

Related Articles

Follow us

Like us !

Most Read

Advertising

License

Categories

COMPANY

STANDARDS

RECENT POSTS

MENU