dummysshbruter

command module
v0.0.0-...-c352088 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: May 29, 2020 License: GPL-2.0 Imports: 10 Imported by: 0

README

dummysshbruter

A little project of mine for the intensive Go-programming course taught by Tero Karvinen http://terokarvinen.com/2020/go-programming-course-2020-w22/

whatis dummysshbruter

This little project in essence is an ssh bruteforces that establishes a connection to host, with capabilities for a very basic ssh shell and can run simple commands, like pwd, ls & whoami by brute-forcing the remote host with combinations of usernames and passwords

Usage

If you have go installed:

go build

Alternatively, you can run the pre-built binary in this repo for your OS and see the list of flags:

./dummysshbruter --help
-P string
    Wordlist containing passwords. e.g. '/path/to/wordlist'
-U string
    Wordlist containing usernames. e.g. '/path/to/wordlist'
-h string
    Remote host. (default "127.0.01")
-p string
    Remote passwords.
-u string
    Remote username. (default <your system user>)

Examples:

Password and username are not known:

./dummyssh -U users.txt -P passwords.txt -h xxx.xxx.xxx.xxx

 !!!! Connection established! Correct creds are: admin:hunter2 !!!!
pwd
/home

ls
passwordreminder.txt

exit

Exiting...

Username is not known:

./dummyssh -U users.txt -p sleepyhead -h xxx.xxx.xxx.xxx

 !!!! Connection established! Correct creds are: admin:sleepyhead !!!!
pwd
/home

ls
passwordreminder.txt

whoami
admin

exit

Exiting...

Sources

http://blog.ralch.com/tutorial/golang-ssh-connection/

https://golangcode.com/get-the-current-username-name-and-home-dir-cross-platform/

https://github.com/Nikitushka/HelloGo/blob/master/helloflags/hello.go

https://golang.org/pkg/bytes/

https://gist.github.com/svett/b7f56afc966a6b6ac2fc#gistcomment-2823834

Answer by egorka:

https://stackoverflow.com/questions/24440193/golang-ssh-how-to-run-multiple-commands-on-the-same-session

https://stackoverflow.com/questions/35110610/whats-the-right-way-to-clear-a-bytes-buffer-in-golang

https://gobyexample.com/reading-files

https://stackoverflow.com/questions/8757389/reading-a-file-line-by-line-in-go

flag handling: https://github.com/ffuf/ffuf/blob/master/main.go

https://golang.org/pkg/net/

https://medium.com/@0x766c6164/writing-a-simple-ssh-brute-forcer-in-go-19c4f928cd3b

form the article above: https://github.com/vlad-s/gofindssh/blob/master/main.go#L86

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.