Password Attacksbrute-forceparallelloginauditornetworkservices

Medusa

Medusa is a fast, parallel, modular login brute-forcer for network services. It supports brute-force testing against multiple hosts, users, or passwords concurrently.

Description

Medusa is intended to be a speedy, massively parallel, modular login brute-forcer. The goal is to support as many services which allow remote authentication as possible. Key features include thread-based parallel testing, flexible user input for targets, and a modular design where each service module is an independent .mod file, allowing easy extension without core modifications.

Use cases involve auditing network login services by attempting brute-force attacks on multiple hosts, usernames, or passwords simultaneously. Target information can be specified flexibly as single entries or files, including combination files for refined listings.

It is also referred to as a Parallel Network Login Auditor, making it suitable for security testing of remote authentication mechanisms across various protocols.

How It Works

Medusa uses thread-based parallel testing to brute-force logins concurrently against multiple hosts, users, or passwords. It employs a modular design with independent .mod files for each service, enabling support for diverse remote authentication protocols. Flexible input methods allow single values or files for hosts (-h/-H), usernames (-u/-U), passwords (-p/-P), or combo files (-C), with logging to files via -O.

Installation

bash

sudo apt install medusa

Flags

-h [TEXT]Target hostname or IP address

-H [FILE]File containing target hostnames or IP addresses

-u [TEXT]Username to test

-U [FILE]File containing usernames to test

-p [TEXT]Password to test

-P [FILE]File containing passwords to test

-C [FILE]File containing combo entries. See README for more information.

-O [FILE]File to append log information to

-M moduleSpecifies the module to use

Examples

Displays the help syntax and available flags for Medusa

medusa -h

Tests a single host, username, and password against a specific module

medusa -h host -u user -p pass -M module

Brute-forces multiple hosts from file, usernames from file, passwords from file using specified module

medusa -H hosts.txt -U users.txt -P passwords.txt -M module

Uses a combo file containing host/user/password combinations for testing with a module

medusa -h host -C combos.txt -M module

Tests multiple hosts with single user and password, logging results to a file

medusa -H hosts.txt -u user -p pass -M module -O output.log

Brute-forces a single host with multiple usernames and passwords from files

medusa -h host -U users.txt -P passwords.txt -M module

Updated 2026-04-16kali.org ↗