Reviewing HTTP Brute Force results

Top  Previous  Next

While a HTTP Brute Force test is in progress, you can always review the partial results and control some aspects of the application. See details below:

 

Reviewing HTTP Brute Force progress

 

You may review the HTTP Brute Force session progress under "Brute Force Session Status" section, which includes:

 

clip0082

 

Total Passwords

Total number of credentials that have been so far attempted against target.

Current Threads

Total number of simultaneous attempts (threads) against target.

Progress

Progress bar showing the total percentage completed.

 

Reviewing HTTP Brute Force results

 

clip0083

 

Under "Credentials Found" section, you will find those that have successfully achieved authentication status (according to the pattern you have previously configured -- see "Configuring HTTP Brute Force").

 

Adjusting number of simultaneous attempts

 

clip0084

 

At any time during the session, you may adjust the number of simultaneous attempts (threads) to reflect the total time window. Remember: Default configuration is five (5) threads which reflects a moderate concurrency (you must adjust this setting according to your machine's capacity).

 

Saving Results to a file

Once session is finished, you may save the results to a file using the "Save" brute-12 button located in the upper right corner of "Credentials found" section.