reddit hackernews mail facebook facebook linkedin


Brute forcing tool that support several uncommon protocols.

Crowbar is a brute forcing tool that can be used during penetration tests. It was developed to brute force some protocols in a different manner according to other popular brute forcing tools. As an example, while most brute forcing tools use username and password for SSH brute force, Crowbar uses SSH key(s). This allows for any private keys that have been obtained during penetration tests, to be used to attack other SSH servers.

It's supports:
- OpenVPN
- Remote Desktop Protocol
- SSH private key authentication
- VNC key authentication