MARATHI TEAM
Welcome on the Marathi Team Forum.
To take full advantage of everything offered by
our forum, please log in if you are already a
member or join our community if you're not
yet....
Log in

I forgot my password

Top posting users this week

Nimbuzz id Maker
freebuzz is my love :D

user name

password

captcha


Brute Force Attack With Burp

View previous topic View next topic Go down

Heart Brute Force Attack With Burp

Post  slowdeath on Sun Jan 06, 2013 4:31 am

In many occasions as a penetration testers we will have to face a web application where it will contain a login form which we will have to test it for weak credentials.Burp Suite is probably the best tool to be used when assessing web applications.Burp’s main use is to be a proxy interceptor,however provides a lot of other functions to penetration testers and it can also be used to attack a login form.In this article we will examine how we can use Burp in order to perform a brute force attack on a web application.

Let’s say that we have the following login form:



Login Form

We will try to submit a username and a password and we will use the Burp Suite in order to capture the HTTP request.



Capturing the HTTP Request

Then we will send the request to the Intruder (Action—>Send to Intruder) and we will clear the positions on the request that we will not need to insert payloads which are the $low$ and session cookie.So we will leave the following positions:



Remaining Positions

As an attack type we will choose the cluster bomb because this type of attack it can take each word of the username list and it can run it against each word of the password list in order to discover the correct credentials.
Now it is time to set the payloads on the three positions.So we will load our wordlists that contains usernames and passwords in the payload options of Burp and for the 3rd position we will just put as an option $Login$.In the next three images you can see this configuration.



Set 1 – Usernames

http://pentestlab.files.wordpress.com/2012/12/bruteforce4.jpeg

Set 2 – Passwords



3 – Login

Everything now is ready and we can start the attack on the Intruder.The Intruder will start sending HTTP requests to the form based on our payloads and it will try all the possible combinations.



Cluster Bomb – Intruder

After the inspection of the responses we will notices that Burp has successfully logged in under the credentials smithy/password.



Discovery of valid credentials

We can now go back to the application and to try to get access to the admin area with this username and password.



Access in the admin area

Conclusion

As we saw in this post Burp is also capable to perform brute force attacks against web applications.Login forms can be found almost in every web application and the intruder tool can help the penetration tester to automate his tests.The discovery of valid administrator credentials can make the difference in black-box penetration tests.
avatar
slowdeath
Owner
Owner

Posts : 216
Points : 591
Reputation : 0
Join date : 2012-12-03
Age : 24
Location : delhi

View user profile http://nimbuzz-team-coder.forumotion.org

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum