• Stars
    star
    171
  • Rank 222,213 (Top 5 %)
  • Language
    C
  • License
    MIT License
  • Created almost 7 years ago
  • Updated 3 months ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Penetration tests on SSH servers using brute force or dictionary attacks. Written in C.

license GitHub contributors Build Status Static Build Status Latest stable release

cbrutekrag

Penetration tests on SSH servers using dictionary attacks. Written in C.

brute krag means "brute force" in afrikáans

Disclaimer

This tool is for ethical testing purpose only.
cbrutekrag and its owners can't be held responsible for misuse by users.
Users have to act as permitted by local law rules.

Requirements

cbrutekrag uses libssh - The SSH Library (http://www.libssh.org/)

Build

Requirements:

  • make
  • gcc compiler
  • libssh-dev
git clone --depth=1 https://github.com/matricali/cbrutekrag.git
cd cbrutekrag
make
make install

Static build

Requirements:

  • cmake
  • gcc compiler
  • make
  • libssl-dev
  • libz-dev
git clone --depth=1 https://github.com/matricali/cbrutekrag.git
cd cbrutekrag
bash static-build.sh
make install

Run

$ cbrutekrag -h
       _                _       _
      | |              | |     | |
  ___ | |__  _ __ _   _| |_ ___| | ___ __ __ _  __ _
 / __|| '_ \| '__| | | | __/ _ \ |/ / '__/ _` |/ _` |
| (__ | |_) | |  | |_| | ||  __/   <| | | (_| | (_| |
 \___||_.__/|_|   \__,_|\__\___|_|\_\_|  \__,_|\__, |
          OpenSSH Brute force tool 0.5.0        __/ |
      (c) Copyright 2014-2022 Jorge Matricali  |___/


usage: ./cbrutekrag [-h] [-v] [-aA] [-D] [-P] [-T TARGETS.lst] [-C combinations.lst]
		[-t THREADS] [-o OUTPUT.txt] [TARGETS...]

  -h                This help
  -v                Verbose mode
  -V                Verbose mode (sshlib)
  -s                Scan mode
  -D                Dry run
  -P                Progress bar
  -T <targets>      Targets file
  -C <combinations> Username and password file
  -t <threads>      Max threads
  -o <output>       Output log file
  -a                Accepts non OpenSSH servers
  -A                Allow servers detected as honeypots.

Example usages

cbrutekrag -T targets.txt -C combinations.txt -o result.log
cbrutekrag -s -t 8 -C combinations.txt -o result.log 192.168.1.0/24

Supported targets syntax

  • 192.168.0.1
  • 10.0.0.0/8
  • 192.168.100.0/24:2222
  • 127.0.0.1:2222

Combinations file format

root root
root password
root $BLANKPASS$

More Repositories

1

brutekrag

Penetration tests on SSH servers using brute force or dictionary attacks. Written in Python.
Python
32
star
2

x3n4

Web-based shell written in PHP
PHP
12
star
3

php-edge-auth

PHP Library that generates authorization token used by Akamai Auth Token 2.0.
PHP
11
star
4

zokete

Simple SOCKS5 Server. Written in C.
C
10
star
5

honeypot-detector

A simple but efficient SSH honeypot detector. Written in C
C
7
star
6

dora

Dora is a network host discovery daemon. Built in Python and JavaScript
HTML
7
star
7

php-http-client

Note that this is not a HTTP protocol implementation of its own. It is merely a wrapper of libcurl that implements PSR-7 HTTP message interface.
PHP
7
star
8

kaker-scripts

Compilation of files recovered from compromised hosts. This collection contains various scripts and tools used by the attackers.
Perl
5
star
9

docker-phalcon

🐳Docker image based on `php:7.0-fpm` including 🦅Phalcon framework extension and tools such as PHPUnit and Composer
Dockerfile
5
star
10

simple-client-server-chat

A simple socket programming which creates a TCP connection between terminals on linux.
C++
5
star
11

mtsk

MicroTik RouterOS API Bruteforce
C
5
star
12

php-simple-filemanager

A simple and password protected web-based file manager written in PHP.
PHP
4
star
13

htcpcp

An implementation of Hyper Text Coffee Pot Control Protocol (HTCPCP/1.0) defined in RFC-2324.
C
3
star
14

mit-license-8bits-theme

A retro theme generator for the mit-license
CSS
3
star
15

ParticlesAPI

A super lightweight plugin for adding particles effects on players
Java
2
star
16

ao4j-servidor

Implementación de Argentum Online en JAVA. Servidor multijugador y multiplataforma 🗡️🧝
Java
2
star
17

html5-sampler

Load your custom sounds and play with it directly in your web browser. Supports MIDI controllers 🎹🎛️🎚️
JavaScript
1
star
18

threadpool

C
1
star
19

jwt-crack

JWT brute force cracker written in C.
C
1
star
20

s0urce-bot

s0urce.io bot
JavaScript
1
star
21

http-honeypotd

C
1
star
22

buscatukas

C
1
star
23

secure-your-php

A little script that helps you harden your PHP environment
PHP
1
star
24

stringslist

C
1
star
25

react-redux-i18nify

Binding for redux and react-i18nify
JavaScript
1
star
26

matricali

1
star
27

mc-raskillstreak

A super lightweight plugin that broadcast a message when players do consecutive kills (Double, Tripe, Quadra or Penta kill)
Java
1
star
28

minecraft-vote-plugin

Java
1
star
29

ao4j-cliente

Una implementación del cliente de Argentum Online en JAVA y OpenGL 3.2 🗡️🧝
Java
1
star