with brutus and http form, what html response strings and other settings are you guys using for vbulletin 3.0.3?

Brutus is lame. Years ago, I bought this textbook (second hand) which was supposed to have practice data sets available online. However, the password to access the server would cost an additional $50 (lame-o).

So, I employed Brutus on their server, and gained access to the data sets I needed for my course.

Except, their server logged my IP 10,000 times in 30 minutes. And sent a bulliten to my school.

Though my IP was never linked with me. There were some uneasy times while the proffessor read a security bulliten at the beginning of each class for a few months.

In short, Brutus is not very elegent. And, its use is risky: try something else.

Brutus:lame,not practical,risky...all bad atributes!

_________________
Per aspera ad astra.

brutus is good to see how good your password is.
download a recent dictionary list and run it on a local ftp server
and see if it finds it

_________________
"I also heard that they ported linux to toast"

No disrespect intended, but Brutus is a great tool. You simply need to know how to use it. For example, you could run it through an optional proxy server/s so that your IP doesn't get logged. Furthermore, it has a load of features that other bruteforcers do not come close to (and supports multiple protocols). Sometimes a bruteforcer is your only way of gaining access to something that you otherwise couldn't.

_________________
Hardware: the parts of a computer that can be kicked.
Jeff Pesis