https://github.com/vpereira/brucutu
Brute force tool for SSH, IMAP, HTTP, FTP, POP3 and others
https://github.com/vpereira/brucutu
brute-force go golang security security-audit
Last synced: 5 months ago
JSON representation
Brute force tool for SSH, IMAP, HTTP, FTP, POP3 and others
- Host: GitHub
- URL: https://github.com/vpereira/brucutu
- Owner: vpereira
- Created: 2019-11-16T19:39:09.000Z (over 6 years ago)
- Default Branch: master
- Last Pushed: 2025-07-22T12:53:32.000Z (11 months ago)
- Last Synced: 2025-07-22T14:43:39.080Z (11 months ago)
- Topics: brute-force, go, golang, security, security-audit
- Language: Go
- Homepage:
- Size: 107 KB
- Stars: 7
- Watchers: 2
- Forks: 1
- Open Issues: 8
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
## Brucutu - The bruteforce tool with the coolest test suite
### Status:
[](https://github.com/vpereira/brucutu/actions/workflows/ci.yml) [](https://codebeat.co/projects/github-com-vpereira-brucutu-master)
### Description
Old problem, new tool. Having many times had issues with Hydra, I thought it would be a good idea to actually stand on the shoulders of giants, and use battle tested protocol decoders instead of custom decoders as Hydra does. Beside it, I would like to have a better test infrastructure and native support integrations with tools that I use daily.

### Usage:
./brucutu -h
The flags used to be compatible with hydra, but I'm kind of give up on that.
TODO:
- Better restore option
- Heuristic switching among protocols to evade monitoring systems
- Parallelism
- Quiet mode
- Add more protocols
- Send metrics to Prometheus