HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 25 guests and 1 member online
 
Advertisement

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Network Pen Testingarrow Hydra Help SMTP & POP3 Authen
EH-Net
May 23, 2013, 06:19:09 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Hydra Help SMTP & POP3 Authen  (Read 6869 times)
0 Members and 1 Guest are viewing this topic.
Blaze
Newbie
*
Offline Offline

Posts: 9


View Profile
« on: April 03, 2010, 04:51:38 AM »
I just started using Hydra. Got a successful authentication over a pop3 service.
Trying the same username and password over the smtp service using hydra's "smtp-auth" module.
My understanding was hydra can try dictionary attack over an smtp service which uses NTLM hashing, my enumerationg results over the listening smtp confirms that it uses NTLM authen type.

Yet using Hydra gives me the following results:

command:  hydra -l username -p password(text) -o output.txt -v -V xxx.xxx.xxx.xxx

Output    Error: SMTP AUTH LOGIN error: 504 5.7.4 unrecognized authentication type
Logged
ajohnson
Recruiters
Hero Member
*
Online Online

Posts: 1057


aka dynamik


View Profile WWW
« Reply #1 on: April 03, 2010, 08:48:42 AM »
Are you sure SMTP is requiring authentication? I don't see that too often; it's usually just restricted by IP address. What happens if you connect to that service via Netcat?
Logged
WIP: GCFA | www.infosiege.net | @infosiege

The day you stop learning is the day you start becoming obsolete.
Blaze
Newbie
*
Offline Offline

Posts: 9


View Profile
« Reply #2 on: April 03, 2010, 09:08:19 AM »
netcat prints out an error when i use EHLO with a mail domain.
Although when i telnet with the same:

c:\> telnet mail.domain.com 25

220 exch01.mail.domain.com Microsoft ESMTP MAIL Service ready at Sat, 3 Apr 2
010 19:05:06 +0500

EHLO mail2.domain.com

250-exch01.mail.domain.com Hello [xxx.xxx.xxx.xxx]
250-SIZE
250-PIPELINING
250-DSN
250-ENHANCEDSTATUSCODES
250-STARTTLS
250-X-ANONYMOUSTLS
250-AUTH NTLM
250-X-EXPS GSSAPI NTLM
250-8BITMIME
250-BINARYMIME
250-CHUNKING
250-XEXCH50
250 XRDST

looking at the output it does seem to be accepting authentication requests.

Also strictly for my knowledge, when you asked me if i was sure whether smtp requires authentication. How would a user be able to send mail if that was not the case?

tx
Logged
Ketchup
Hero Member
*****
Offline Offline

Posts: 1021



View Profile
« Reply #3 on: April 03, 2010, 09:31:59 AM »
It also lists an Anonymous protocol option there.   Try taking it further and sending an email through telnet without authentication.   Some SMTP servers will require authentication, some will not.   Some will just filter your ability to relay based on IP restrictions.   Most servers will allow you to relay anonymously to the domains they are responsible for.
Logged
~~~~~~~~~~~~~~
Ketchup
j0rDy
Hero Member
*****
Offline Offline

Posts: 590


View Profile
« Reply #4 on: April 06, 2010, 03:43:50 AM »
Quote from: Ketchup on April 03, 2010, 09:31:59 AM
It also lists an Anonymous protocol option there.   Try taking it further and sending an email through telnet without authentication.   Some SMTP servers will require authentication, some will not.   Some will just filter your ability to relay based on IP restrictions.   Most servers will allow you to relay anonymously to the domains they are responsible for.

this should get you a step further. Would you be so kind to post the results?
Logged
ISC2 Associate, CEH, ECSA, OSCP, OSWP

earning my stripes appears to be a road i must travel alone...with a little help of EH.net
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.058 seconds with 23 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.