In the context of Brutus, it is a service provided by the target that allows a remote client to authenticate against the target using client supplied credentials. A target may provide no available attack methods, it may provide one or it may provide several. To engage any given target we require an attack method, generally we only perform one type of remote attack – that is we attempt to positivley authenticate with the target by using a number of access token combinations. As far as Brutus is concerned a target is a remote system and possibly a remote user on a remote system, there is more. To obtain any valid access tokens on a particular target where only target penetration is required.To obtain the valid access tokens for a particular user on a particular target.Examples of a supported target system might be an FTP server, a password protected web page, a router console a POP3 server etc. Brutus is used to recover valid access tokens (usually a username and password) for a given target system. More specifically it is a remote interactive authentication agent. In simple terms, Brutus is an online or remote password cracker. Brutus – Introduction & Overview Jan 28th 2000
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |