noptrix / sshprank Goto Github PK

hi
i want to brute force 370 000 ips with 10 000 pw
but script use 14gb memory for that
its very much
please optimize memory usage

SSHPrank wastes a lot of time on brute force runs if one or more of the IP addresses in the list fails to connect. It iterates through all username/password combinations on those addresses even if it can't connect.

It would be great if there was an optional flag to only run brute forcing on IP addresses that are actually online, saving the time wasted on offline servers.

`./sshprank.py rank -b hosts.txt > sshds2.txt

[+] game started
[+] cracking single target
[+] game over
Traceback (most recent call last):
File "/root/sshprank/./sshprank.py", line 720, in
main(sys.argv[1:])
File "/root/sshprank/./sshprank.py", line 667, in main
crack_single()
File "/root/sshprank/./sshprank.py", line 534, in crack_single
host, ports = list(opts['targets'].copy().items())[0]
AttributeError: 'list' object has no attribute 'items'`

No matter what order you place, the same error occurs.
I know there is already another issue on the same error, but the error is not fixed.

Hi again! Let me just say up front that you've done great work with this so far, and I look forward to seeing where this goes.

I'm wondering how feasible it would be to add a flag to route SSH requests through a socks5 (Tor) or other proxy. This would be greatly beneficial when trying to stay anonymous while pentesting.

Need to change s = opts['sho_opts'].split(':')
as 'country:US SSH:1:500' is a problem.

i've changed by ...split('::') so 'country:US SSH::1::500' works.

Hi , I used my own shodan api keys ,

i got theses in owned
148.244.67.69:22:root:root
78.134.3.86:22:root:root
174.98.52.139:22:root:root
174.98.110.179:22:root:root
171.103.80.7:22:root:root

but couldnt connect

[+] game started
[+] cracking single target
[+] game over
Traceback (most recent call last):
File "/root/sshprank/./sshprank.py", line 720, in
main(sys.argv[1:])
File "/root/sshprank/./sshprank.py", line 667, in main
crack_single()
File "/root/sshprank/./sshprank.py", line 534, in crack_single
host, ports = list(opts['targets'].copy().items())[0]
AttributeError: 'list' object has no attribute 'items'`

Whats Wrong Bro???

My Combos Format Like That..
root:admin
admin:admin
telnet:telnet
ubnt:ubnt
user:user
support:support
0000:0000
1111:1111
admin:password
admin:1234567890
osmc:osmc
pi:raspberry
operator:operator
pi:1234
root:pi
user:123456
service:service
root:linux
root:password

`Get r00t for this option'
python3 sshprank.py -m -r

Another nifty feature to have would be to be able to send a bash script rather than just one command. I know that you can make a huge one-liner with '&&' but it would be cleaner to have a flag for sending a .sh payload (eg. -x run.sh)

I was wondering if you could add this feature to this scanner,

when he does bruteforce copy the first 7 characters of the domain that tries to brute force him as a user and put the entire domain name without . ltd

in the combo file to appear like this

%first7%:%domain%
%first7%:%domain%1
%first7%:%domain%123
%first8%:%domain%
%first8%:%domain%1
%first8%:%domain%123

list of domains

hastema.ch:22,10022,2222,2022,222
hastenrath.ch:22,10022,2222,2022,222
hatras.ch:22,10022,2222,2022,222
hauber-services.ch:22,10022,2222,2022,222
haunschmied.ch:22,10022,2222,2022,222
haupt-studer.ch:22,10022,2222,2022,222
haus-profis.ch:22,10022,2222,2022,222
haus25.ch:22,10022,2222,2022,222
hausaerzte-reiden.ch:22,10022,2222,2022,222
hausbatterie.ch:22,10022,2222,2022,222
hausdekor.ch:22,10022,2222,2022,222
hausel.ch:22,10022,2222,2022,222
hausenundwohnen.ch:22,10022,2222,2022,222

a successful example would be like this

hausenundwohnen.ch:10022:hausenu:hausenundwohnen
domain : port:username:password

thanks.

sorry it was mistake of me so plz close the issue

hy i got this errore at run
i have installed all req...

 root@server$ python3 sshprank.py
File "sshprank.py", line 172
   iprefix = f'{BOLD}{BLUE}[+] {NORM}'
                                      ^
SyntaxError: invalid syntax

runing on wsl

awa@awa:~/sshprank$ sudo ./sshprank.py -m '-p22 --rate=10000 -iL a.txt' -u admin -p admin -x 100 -X 100 -o global.txt
__ __
/ / ____ _________ _____ / /
/ / / __ / __ / / __ `/ __ / ///
( | ) / / / // / / / // / / / / ,<
//// // .// _,// ///||
//

  --== [ by nullsecurity.net ] ==--

[+] game started
[+] scanning and cracking targets
[/] scanning sshds
[+] game over
Traceback (most recent call last):
File "./sshprank.py", line 720, in
main(sys.argv[1:])
File "./sshprank.py", line 681, in main
crack_scan()
File "./sshprank.py", line 577, in crack_scan
targets = grep_service(future.result())
File "./sshprank.py", line 372, in grep_service
for h in scan.scan_result['scan'].keys():
TypeError: string indices must be integers

I'm experimenting with this awesome approach but finding myself always in the same situation. Whenever I use -h and a multiple number of targets I receive "Killed" without further notice on the tty at a certain moment. I'll try to figure out, maybe RAM issues but do you have any idea?

For packaging sshprank for additional distributions It would be nice to have it available from PyPI or at least be able to do python3 setup.py install for the installation.

Having a proper Python package would make my life easier to package it for Fedora and EPEL. Also, user could pip3 install sshprankand are ready to go.

I could submit a PR to support PyPI and maintain it but only I you agree.

using on linux
run this command
python3 sshprank.py -m '-p22,2022 --rate 5000 --source-ip 192.168.13.37 --range 192.168.13.1/24' -p admin

When load a 44k ip list
It use 78M ram then finally become around 9x M

When using a 1.4M list, ram usage become 200+mb

44k iplist with 52k dict resulated 296M ram usage!!!