++=========================++ || FTP Dictionary Attacker || ++=========================++ Disclaimer ========== How you decide to use this application is up to you and I will take no reponsibility for your actions. Description: ============ This tool can be used for password strength testing on FTP accounts. Tool can read words either from wordlist file or from stdin. Program is traditional dictionary attacker that reads words either from a dictionary file or standard input. Words in dictionary file have to separated with'\n' characters. Compilation =========== Just use attached Makefile. Program doesn't use any specialized library it use only basic C network programming commands. It was tested on Arch Linux (kernel 2.6.28) with GCC 4.3.3. Usage: ====== Program can be configured via several arguments: ftpbf -s ftpserver -u user [-w wordlist] [-m number] [-v] [-h] -s This option is mandatory and specified address or domain of FTP server e.g. www.myftpserver.cz or 192.168.0.1 -u This mandatory option specifies username that will be used for logging. -w This option specifies dictionary file (often called wordlist). If not specified, standard input is used. -m When program is running it is able to print words that are being processed at the moment. By this option, you can specify what every word will be print. For example -m 3 mean every third read word will be print to standard input. Default value is 1000. I assume you have large wordlist and you don't want to be bothered by every used word. -v This option enables verbose mode. -h This one prints help. Example of usage: ================= $ ./dict -s 192.168.0.1 -u stoyan -w wordlist -u -m 1 Starting with username Stoyan on 192.168.0.1... 17:22:20 (7%) Trying sasdasd 17:22:20 (14%) Trying asda 17:22:20 (21%) Trying adsda 17:22:20 (28%) Trying asdas 17:22:20 (35%) Trying asdasd aaa 17:22:21 (42%) Trying asdsdsd 17:22:21 (50%) Trying myTopSecretPassword Password found: myTopSecretPassword License: ======== This heap of bytes is released under GNU GPL license Author: ======= Stoyan, 2009