Jump to content

Burp bruteforce very slow


pierre
 Share

Recommended Posts

Hello,

I have follow step by step this documentation to make a bruteforce on a login page:

https://support.portswigger.net/customer/portal/articles/1964020-using-burp-to-brute-force-a-login-page

I use a 10,000 entries dictionary.

At first, brutefroce is very fast (4/5 request/second)

But as long as the bruteforce occurs, each request takes more and more time to reach the webserver...

I use 2 VirtualBox VM. My host is 8gb, 4gb is dedicated to a guest and 1gb to the other.

I would like to know it is normal ? Or is it attacker problem ? Webserver problem ? Host technical configuration problem ?

Tks

Link to comment
Share on other sites

19 hours ago, digininja said:

Free or pro version of burp?

I use the free version

6 minutes ago, Dec100 said:

I think Digininja has it. The free version is throttled, I believe.

I have read bruteforce is slower than the pro version, but here it appears slower and slower as the bruteforce occurs..

Link to comment
Share on other sites

On 25/10/2016 at 11:08 AM, digininja said:

Read up on your tools, intruder on the free one degrades more and more over time. You are seeing expected behaviour.

I didn't read it, thank, Burp normal behaviour so..

21 hours ago, i8igmac said:

Build the attack your self. Its a lot of fun to learn this stuff.. you can use curl or libs for perl,  python and ruby...

 

Learn why a firewall might ip ban you...

Yes I should..

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...