Hi, and welcome to this new video!

In this video I continue my web exploitation series by discussing credentials bruteforcing and showcasing legba, a tool that will allow you to bruteforce credentials for many different protocols. In the video four different scenarios are discussed:

- SSH bruteforcing with legba
- FTP bruteforcing with legba
- HTTP basic auth bruteforcing with legba
- HTTP custom login bruteforcing with custom python code

If you're interested in more videos of the series or if you have any feedback, please let me know!

-------------------------

TIMESTAMP

00:00 Introduction
02:24 Scenario 1 – Brute Forcing SSH
15:16 Scenario 2 – Brute Forcing FTP
19:35 Scenario 3 – Brute Forcing HTTP Basic Auth
22:30 Scenario 4 – Brute Forcing DVWA login
29:00 Conclusion

-------------------------

REFERENCES

- Material: https://github.com/LeonardoE95/yt-en/tree/main/src/2024-05-13-web-exploitation-bruteforcing
- OSCP repository: https://github.com/LeonardoE95/OSCP
- BurpSuite Community Edition: https://portswigger.net/burp/communitydownload


-------------------------

CONTACTS

- Blog: https://blog.leonardotamiano.xyz/
- Github: https://github.com/LeonardoE95?tab=repositories
- Support: https://www.paypal.com/donate/?hosted_button_id=T49GUPRXALYTQ