I taught juan about unix, flags, and programs like hydra. We tried hydra against different machines using different protocols. Some locked us out after a certain amount of attempts. I thought I had suceeded one time when I attacked a http web form (the router) using the http-get protocol. I was wrong. hydra is very touchy and did not understand that it had failed to crack the web form. It took the fact that it submitted as a sign that it had cracked the password. After entering 15 passwords into the form in a fraction of a second, it thought it had found 15 valid passwords.