• Stars
    star
    117
  • Rank 301,828 (Top 6 %)
  • Language
    Python
  • Created almost 9 years ago
  • Updated over 5 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

ssh public host key scanner using shodan

ssh keyscanner - search shodan for a given ssh hostkey fingerprint.

This tool has two modes, currently. It can search given a public-key you provide it, or, it can fingerprint a host and search shodan for similar hosts.

It currently is incomplete (see the todo list), but works for those uses.

It now has support for doing the keygrab over tor, and works on hidden services. This is useful for finding, uh, shittily configured ones.

Howto:

The tool has 4 args, outlined below.

  • "-i", for target host. You must set either this, -l, or -f.
  • "-f", for SSH Public Key file. You must set either this, -f, or -i.
  • "-l", for lists of target hosts. Alternative to -i or -f.
  • "-d", for directories of keys. Not yet implemented!
  • "-p", for target port. This defaults to 22.
  • "-t", uses Tor for the SSH key grabbing. Good for Hidden Services ;)

You should also edit the script to put in your own Shodan API key, as you can't have mine. You can probably just borrow someone elses, as people leave them all over github.

Requirements

This tool depends on the following:
Paramiko
sshpubkeys
shodan
PySocks
You can get them with pip install -r requirements.txt or whatever. The rest should be stdlib.

Note: I only bothered testing on python2.

Todo

  • Private-Key support so I can also use privkeys as well as pubkeys.
  • Directory of keyfile support.
  • List of hosts support.
  • idk, make a git issue with your ideas...

Licence

Licenced under the WTFPL (do Whatever The Fuck you want Public Licence)

Beer?

Send yer cryptologically generated beer tokens to fuel further opensource software:
coinbase, for convenience, or the following bitcoin address: 13rZ67tmhi7M3nQ3w87uoNSHUUFmYx7f4V

Mandatory asciicast until I finish it and make a proper video

asciicast

Bug Reports and Feature Requests

Please submit all bug reports and feature requests to the Github Issue Tracker. Give me stacktraces by enabling debug mode.

Changelog

18-01-2015 (01:26): - Added Tor support on a whim. Completely untested, will get tested in the morning when I wake up.

More Repositories

1

linux.mirai

Leaked Linux.Mirai Source Code for Research/IoC Development Purposes
C
554
star
2

CiscoRV320Dump

CVE-2019-1652 /CVE-2019-1653 Exploits For Dumping Cisco RV320 Configurations & Debugging Data AND Remote Root Exploit!
Python
224
star
3

GitPass

Open Source Your Password (Mismanagement)!
Python
115
star
4

TheItalianJob

Uses Shodan to locate HackingTeam C&C Servers.
Python
78
star
5

apkpure_get

apkpure.com apk downloader
Python
54
star
6

shodan_key_checker

Quick script written for sorting and categorizing Shodan API keys acquired via scraping the internet.
Python
54
star
7

sebd-0.2

put this here because archival reasons.
C
28
star
8

EquationSmasher

NSA EquationGroup C&C Hunter using the Shodan API
Python
28
star
9

clypdown

Downloader for https://clyp.it
Python
26
star
10

irssi-shakespeare-insult

Shakespearean Insult generator script for IRSSI IRC client.
Python
11
star
11

transfer.py

Simple python client to upload files to the transfer.sh service
Python
10
star
12

mod_rootme

mod_rootme patched for apache 2.2
C
10
star
13

coinbase_checker

utility script to check and log coinbase balances
Python
10
star
14

hfsdump

Dump/Backup a "HFS" (HTTPFileServer) Server with no auth
Python
9
star
15

wargames

wargame/challenge solutions
Python
8
star
16

BritCrypt

Theresa May Approved Crypto for British Citizens
Perl
7
star
17

catfacts

Cat Facts SMS Sending Tool using Twilio API.
Python
6
star
18

hexchat-shakespeare-insult

Shakespearean Insult generator script for HexChat IRC client.
Python
6
star
19

encryption-to-magic

JavaScript
5
star
20

imgurup

Commandline Imgur Uploader
Python
5
star
21

0x27.github.io

Github Pages Site - 0x27.me
HTML
4
star
22

imgurscrot

imgur/scrot screengrabber/uploader
Python
4
star
23

metah

metaheuristike
JavaScript
2
star
24

relaycheck

Tool for checking the status and restarting my Tor relays
Python
2
star
25

mrw-code

Fork made to fix some bugs, upstream deleted their repo, so archiving. Original owner is @matthew1001
JavaScript
1
star
26

scripts

vps scripts
Shell
1
star
27

ctftrolol

Python
1
star
28

be-utils

utility scripts and such for working with the binaryedge platform
Python
1
star
29

surveilling.me

Surveilling.me - Tests routes you are using for surveillance equipment
CSS
1
star
30

Flowman

Workflow Manager
JavaScript
1
star
31

WikiMon

Monitors a MediaWiki Instance for page creation and deletion events in a loop
Python
1
star
32

Generator

Generator page for the website. Found at http://algorithm.tantium.org
JavaScript
1
star
33

twilightpam

Python-PAM 2-Factor Authentication using Twilio
Python
1
star
34

nasadmin

1
star