How can I perform a brute force attack on a webmail site which has no firewall and has an unlimited amount of tries? [closed]

My professor made this site for us and gave us a project to find the password if we have the email. Is it possible?
Not sure if this is relevant, but the site isn’t HTTPS also

Continue reading How can I perform a brute force attack on a webmail site which has no firewall and has an unlimited amount of tries? [closed]

How can I create an http request like this manually or with a tool? [on hold]

How can I make this type of payload or HTTP request? I used them to have internet without isp limitations. Connected by means of an ssh account.

Where can I find information about this type of HTTP request? I put some exampl… Continue reading How can I create an http request like this manually or with a tool? [on hold]

Hydra: Brute force an http form, all arguments are supplied but the login error has other string formats and is too big

I am using Hydra to brute force a login http form (Method: post), but I’m getting false positives (passwords that aren’t valid)

I believe I know the reason, I just don’t know how to handle it:
The failure of the request prod… Continue reading Hydra: Brute force an http form, all arguments are supplied but the login error has other string formats and is too big