Projects / NiX Brute Forcer

NiX Brute Forcer

NiX Brute Forcer is a tool that uses brute force in parallel to log into a system without having authentication credentials beforehand. This tool is intended to demonstrate the importance of choosing strong passwords. NiX supports a variety of services that allow remote authentication, such as HTTP(S) BASIC/FORM, MySQL, SSH, and FTP. It is based on NiX Proxy Checker.

Operating Systems

Recent releases

  •  01 Mar 2011 22:32

    Release Notes: Headers were fixed in non-SSL FORM mode when using a SQUID proxy. Site and proxy protection mechanism detection was improved. If a cookie is received from the site in BASIC AUTH mode, it is now considered a possible "HIT", regardless of a reply or success and failure keys. A "days left information" was added to the estimated time left function. The default configuration file now has better examples.

    •  12 Feb 2011 08:27

      Release Notes: Cookie handling in FORM mode when using a SOCKS proxy was fixed. The tool now proceeds accordingly if FORM does not redirect at all after a "HIT" or if in some cases redirect detection failed. Debug mode was improved.

      •  23 Jan 2011 09:28

        Release Notes: FORM auto-detection has been improved. FORM MODE redirection handling after a "HIT" has been improved. Proxy content filtering detection has been improved in a fake engine, which will cause fewer fakes regardless of the mode used if there was no success key defined. HTTPS (SSL) brute mode has been improved.

        •  19 Nov 2010 23:45

          Release Notes: The "Client cannot resolve the hostname" SOCKS5 feature was reverted, because a majority of public SOCKS5 proxies are unreliable. Hostnames are now only resolved once.

          •  17 Nov 2010 04:38

            Release Notes: If the site target is something other than a default address, such as a custom IP address and port, headers are now created accordingly to fix any timeout problems that may occur. FORM auto-detection has been fixed in SSL mode. FORM auto-detection has been improved. Note that JavaScript based forms are not currently supported, but these can be defined with a manual form input option.


            Project Spotlight


            A Fluent OpenStack client API for Java.


            Project Spotlight

            TurnKey TWiki Appliance

            A TWiki appliance that is easy to use and lightweight.