[PATCH] gnu: Add hydra.

  • Done
  • quality assurance status badge
Details
2 participants
  • Ludovic Courtès
  • phodina
Owner
unassigned
Submitted by
phodina
Severity
normal
P
P
phodina wrote on 2 Dec 2022 06:13
(name . Guix Patches)(address . guix-patches@gnu.org)
4GEZ3KkamZ9M6fpskUJyPfs9NtKN7ybX8B6iOl9b-Enwe0Ghg8DpYrFITMJ9G_jNq2jzcXQELvHtWD9TOtGDQNkEVdrc-b3uuLD9klZzLsM=@protonmail.com
Hi,

here's hydra package for doing parallel login cracking. Please use for legitimate purposes only.

----
Petr
Attachment: file
From 34a6f226063c49d326966d01e78092a40177a05f Mon Sep 17 00:00:00 2001
From: Petr Hodina <phodina@protonmail.com>
Date: Thu, 24 Feb 2022 19:29:14 +0100
Subject: [PATCH] gnu: Add hydra.

* gnu/packages/password-utils.scm (hydra): New variable.

Toggle diff (65 lines)
diff --git a/gnu/packages/password-utils.scm b/gnu/packages/password-utils.scm
index c74ffe5242..cb4c2a3667 100644
--- a/gnu/packages/password-utils.scm
+++ b/gnu/packages/password-utils.scm
@@ -38,6 +38,7 @@
;;; Copyright © 2022 Maxime Devos <maximedevos@telenet.be>
;;; Copyright © 2022 ( <paren@disroot.org>
;;; Copyright © 2022 Nicolas Graves <ngraves@ngraves.fr>
+;;; Copyright © 2022 Petr Hodina <phodina@protonmail.com>
;;;
;;; This file is part of GNU Guix.
;;;
@@ -67,6 +68,7 @@ (define-module (gnu packages password-utils)
#:use-module (guix gexp)
#:use-module (guix git-download)
#:use-module (guix packages)
+ #:use-module (guix utils)
#:use-module (gnu packages)
#:use-module (gnu packages admin)
#:use-module (gnu packages aidc)
@@ -103,6 +105,7 @@ (define-module (gnu packages password-utils)
#:use-module (gnu packages python)
#:use-module (gnu packages python-web)
#:use-module (gnu packages python-xyz)
+ #:use-module (gnu packages rdesktop)
#:use-module (gnu packages readline)
#:use-module (gnu packages ruby)
#:use-module (gnu packages security-token)
@@ -1351,6 +1354,32 @@ (define-public hashcat-utils
group them into chains.")
(license license:expat)))
+(define-public hydra
+ (package
+ (name "hydra")
+ (version "9.4")
+ (source (origin
+ (method url-fetch)
+ (uri (string-append
+ "https://salsa.debian.org/pkg-security-team/hydra/-/archive/upstream/"
+ version "/hydra-upstream-" version ".tar.gz"))
+ (sha256
+ (base32
+ "12m5w2rf2821gl8libbsd7pfz4dqn3g4jxh3mcg4qd2hk1c19qns"))))
+ (build-system gnu-build-system)
+ (arguments
+ `(#:tests? #f ;no test suite
+ #:make-flags (list (string-append "CC="
+ ,(cc-for-target)))))
+ (native-inputs (list pkg-config))
+ (inputs (list freerdp gtk+ openssl zlib))
+ (home-page "https://salsa.debian.org/pkg-security-team/hydra")
+ (synopsis "Tool to gain unauthorized access from remote to a system")
+ (description
+ "This package provides a tool to gain unauthorized
+access from remote to a system. This tool is only for LEGAL purposes!")
+ (license license:agpl3+)))
+
(define-public bruteforce-luks
(package
(name "bruteforce-luks")

base-commit: 437718442ca758a3857702cecfe5c80aa5df272b
--
2.38.1
L
L
Ludovic Courtès wrote on 8 Jan 2023 12:20
(name . phodina)(address . phodina@protonmail.com)(address . 59759@debbugs.gnu.org)
87ilhhw9wb.fsf@gnu.org
Hi,

phodina <phodina@protonmail.com> skribis:

Toggle quote (7 lines)
> From 34a6f226063c49d326966d01e78092a40177a05f Mon Sep 17 00:00:00 2001
> From: Petr Hodina <phodina@protonmail.com>
> Date: Thu, 24 Feb 2022 19:29:14 +0100
> Subject: [PATCH] gnu: Add hydra.
>
> * gnu/packages/password-utils.scm (hydra): New variable.

[...]

Toggle quote (4 lines)
> + (uri (string-append
> + "https://salsa.debian.org/pkg-security-team/hydra/-/archive/upstream/"
> + version "/hydra-upstream-" version ".tar.gz"))

This is a generated tarball. Please use ‘git-fetch’ instead and make
sure to check ‘guix lint’.

Toggle quote (2 lines)
According to ‘README’, upstream is actually

Toggle quote (2 lines)
> + (synopsis "Tool to gain unauthorized access from remote to a system")

What about “Gain access to a remote system by trying logins and passwords”?

Toggle quote (4 lines)
> + (description
> + "This package provides a tool to gain unauthorized
> +access from remote to a system. This tool is only for LEGAL purposes!")

How about something like this:

This package provides a tool to demonstrate how easy it is to gain
unauthorized access to a system by automatically attempting logins and
passwords. It supports a wide range of protocols, including SSH,
SMTP, and HTTP.

Could you send an updated patch?

Thanks,
Ludo’.
P
P
phodina wrote on 9 Jan 2023 00:56
(name . Ludovic Courtès)(address . ludo@gnu.org)(address . 59759@debbugs.gnu.org)
OIsD2OrTJhOUcNNeSkgIGGBUJxya_gPawdyY7fIGWFrNYeQdUV8IFYtB0EZ2c9_TZDVwNajr1ywf8CB0ZQvRvcoOr69F2NB5rbyBLgic-5A=@protonmail.com
Hi Ludo’,

thanks for the review. Here's updated patch.

Regarding the github tarball checksum I encountered this in some other patch and review discussion. So I'll stick with git-fetch in new and updated patches :-)
From 1d23cf1460d701b96ab28feb980876540aca40dd Mon Sep 17 00:00:00 2001
From: Petr Hodina <phodina@protonmail.com>
Date: Thu, 24 Feb 2022 19:29:14 +0100
Subject: [PATCH v2] gnu: Add hydra.

* gnu/packages/password-utils.scm (hydra): New variable.

Toggle diff (66 lines)
diff --git a/gnu/packages/password-utils.scm b/gnu/packages/password-utils.scm
index 410c92d268..7de53cc6a4 100644
--- a/gnu/packages/password-utils.scm
+++ b/gnu/packages/password-utils.scm
@@ -38,6 +38,7 @@
;;; Copyright © 2022 Maxime Devos <maximedevos@telenet.be>
;;; Copyright © 2022 ( <paren@disroot.org>
;;; Copyright © 2022 Nicolas Graves <ngraves@ngraves.fr>
+;;; Copyright © 2022 Petr Hodina <phodina@protonmail.com>
;;;
;;; This file is part of GNU Guix.
;;;
@@ -67,6 +68,7 @@ (define-module (gnu packages password-utils)
#:use-module (guix gexp)
#:use-module (guix git-download)
#:use-module (guix packages)
+ #:use-module (guix utils)
#:use-module (gnu packages)
#:use-module (gnu packages admin)
#:use-module (gnu packages aidc)
@@ -103,6 +105,7 @@ (define-module (gnu packages password-utils)
#:use-module (gnu packages python)
#:use-module (gnu packages python-web)
#:use-module (gnu packages python-xyz)
+ #:use-module (gnu packages rdesktop)
#:use-module (gnu packages readline)
#:use-module (gnu packages ruby)
#:use-module (gnu packages security-token)
@@ -1348,6 +1351,35 @@ (define-public hashcat-utils
group them into chains.")
(license license:expat)))
+(define-public hydra
+ (package
+ (name "hydra")
+ (version "9.4")
+ (home-page "https://github.com/vanhauser-thc/thc-hydra")
+ (source (origin
+ (method git-fetch)
+ (uri (git-reference
+ (url home-page)
+ (commit (string-append "v" version))))
+ (file-name (git-file-name name version))
+ (sha256
+ (base32
+ "0dbx7yaqf4nl63pi8wmr19cxnp5v4w7fsd369krdy8hlc8k0qjgr"))))
+ (build-system gnu-build-system)
+ (arguments
+ `(#:tests? #f ;no test suite
+ #:make-flags (list (string-append "CC="
+ ,(cc-for-target)))))
+ (native-inputs (list pkg-config))
+ (inputs (list freerdp gtk+ openssl zlib))
+ (synopsis "Gain acces to a remote sustem by trying logins and passwords")
+ (description
+ "This package provides a tool to demonstrate how esay it is to gain
+unauthorized access to a system by automatically attempting logins
+and passwords. It supports a wide range of protocols including SSH, SMTP
+and HTTP.")
+ (license license:agpl3+)))
+
(define-public bruteforce-luks
(package
(name "bruteforce-luks")
--
2.38.1
L
L
Ludovic Courtès wrote on 12 Jan 2023 23:31
(name . phodina)(address . phodina@protonmail.com)(address . 59759-done@debbugs.gnu.org)
87k01rfkqx.fsf@gnu.org
phodina <phodina@protonmail.com> skribis:

Toggle quote (7 lines)
> From 1d23cf1460d701b96ab28feb980876540aca40dd Mon Sep 17 00:00:00 2001
> From: Petr Hodina <phodina@protonmail.com>
> Date: Thu, 24 Feb 2022 19:29:14 +0100
> Subject: [PATCH v2] gnu: Add hydra.
>
> * gnu/packages/password-utils.scm (hydra): New variable.

Fixed a couple of typos and applied, thanks!

Ludo’.
Closed
?
Your comment

This issue is archived.

To comment on this conversation send an email to 59759@debbugs.gnu.org

To respond to this issue using the mumi CLI, first switch to it
mumi current 59759
Then, you may apply the latest patchset in this issue (with sign off)
mumi am -- -s
Or, compose a reply to this issue
mumi compose
Or, send patches to this issue
mumi send-email *.patch