diff --git a/CHANGELOG.md b/CHANGELOG.md index 5869c0f..601dbdc 100755 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,4 +1,5 @@ ## CHANGELOG: +* v1.9 Updated default credential lists for each service * v1.8 Added improved default credential list for each service * v1.7 Removed DNS brute forcing * v1.7 Added -P0 to NMap scan options diff --git a/brutex b/brutex index a0dc7e6..93be095 100755 --- a/brutex +++ b/brutex @@ -17,11 +17,23 @@ TARGET="$1" PORT="$2" -VER="1.8" +VER="1.9" LOOT_DIR=/usr/share/brutex/loot FTP_USER_PASS="/usr/share/brutex/wordlists/ftp-default-userpass.txt" +FTP_USERS="/usr/share/brutex/wordlists/ftp_defuser.lst" +FTP_PASS="/usr/share/brutex/wordlists/ftp_defpass.lst" SSH_USER_PASS="/usr/share/brutex/wordlists/ssh-default-userpass.txt" +SSH_USERS="/usr/share/brutex/wordlists/ssh_defuser.lst" +SSH_PASS="/usr/share/brutex/wordlists/ssh_defpass.lst" +SMTP_USERS="/usr/share/brutex/wordlists/smtp_defuser.lst" +SMTP_PASS="/usr/share/brutex/wordlists/smtp_defpass.lst" +POP_USERS="/usr/share/brutex/wordlists/pop_defusers.lst" +POP_PASS="/usr/share/brutex/wordlists/pop_defpass.lst" TELNET_USER_PASS="/usr/share/brutex/wordlists/telnet-default-userpass.txt" +TELNET_USERS="/usr/share/brutex/wordlists/telnet_defuser.lst" +TELNET_PASS="/usr/share/brutex/wordlists/telnet_defpass.lst" +SQL_USERS="/usr/share/brutex/wordlists/sql_defuser.lst" +SQL_PASS="/usr/share/brutex/wordlists/sql_defpass.lst" MSSQL_USER_PASS="/usr/share/brutex/wordlists/mssql-default-userpass.txt" MYSQL_USER_PASS="/usr/share/brutex/wordlists/mysql-default-userpass.txt" ORACLE_USER_PASS="/usr/share/brutex/wordlists/oracle-default-userpass.txt" @@ -33,7 +45,7 @@ PASS_FILE="/usr/share/brutex/wordlists/password.lst" SNMP_FILE="/usr/share/brutex/wordlists/snmp-strings.txt" VNC_FILE="/usr/share/brutex/wordlists/vnc-default-passwords.txt" HTTP_LOCATION="/" -THREADS="1" +THREADS="30" COLOR1='\033[91m' COLOR2='\033[92m' COLOR3='\033[92m' @@ -113,6 +125,7 @@ then else echo -e "$COLOR2 + -- --=[Port 21 opened... running tests...$RESET" hydra -C $FTP_USER_PASS $TARGET ftp -t $THREADS -e ns + hydra -L $FTP_USERS -P $FTP_PASS $TARGET ftp -t $THREADS -e ns fi if [ -z "$port_22" ] @@ -122,6 +135,7 @@ else echo -e "$COLOR2 + -- --=[Port 22 opened... running tests...$RESET" hydra -C $SSH_USER_PASS $TARGET ssh -t $THREADS -e ns hydra -L $USER_FILE -P $PASS_FILE $TARGET ssh -t $THREADS -e ns + hydra -L $SSH_USERS -P $SSH_PASS $TARGET ssh -t $THREADS -e ns fi if [ -z "$port_23" ] @@ -131,6 +145,7 @@ else echo -e "$COLOR2 + -- --=[Port 23 opened... running tests...$RESET" hydra -C $TELNET_USER_PASS $TARGET telnet -t $THREADS -e ns hydra -L $USER_FILE -P $PASS_FILE $TARGET telnet -t $THREADS -e ns + hydra -L $TELNET_USERS -P $TELNET_PASS $TARGET telnet -t $THREADS -e ns fi if [ -z "$port_25" ] @@ -140,6 +155,7 @@ else echo -e "$COLOR2 + -- --=[Port 25 opened... running tests...$RESET" hydra -L $USER_FILE -P $PASS_FILE $TARGET smtp-enum -t $THREADS -e ns hydra -L $USER_FILE -P $PASS_FILE $TARGET smtp -t $THREADS -e ns + hydra -L $SMTP_USERS -P $SMTP_PASS $TARGET smtp -t $THREADS -e ns fi if [ -z "$port_80" ] @@ -156,6 +172,7 @@ then else echo -e "$COLOR2 + -- --=[Port 110 opened... running tests...$RESET" hydra -L $USER_FILE -P $PASS_FILE $TARGET pop3 -t $THREADS -e ns + hydra -L $POP_USERS -P $POP_PASS $TARGET pop3 -t $THREADS -e ns fi if [ -z "$port_139" ] @@ -255,6 +272,7 @@ then else echo -e "$COLOR2 + -- --=[Port 3306 opened... running tests...$RESET" hydra -C $MYSQL_USER_PASS $TARGET mysql -t $THREADS -e ns + hydra -L $SQL_USERS -P $SQL_PASS $TARGET mysql -t $THREADS -e ns fi if [ -z "$port_3389" ] diff --git a/wordlists/ftp_defpass.lst b/wordlists/ftp_defpass.lst new file mode 100644 index 0000000..6757419 --- /dev/null +++ b/wordlists/ftp_defpass.lst @@ -0,0 +1,24 @@ +admin +password + +manager +letmein +cisco +default +root +apc +pass +security +user +system +sys +none +toor +ftp +ftp123 +ftpadmin +apc +pass123 +security +user +sys diff --git a/wordlists/ftp_defuser.lst b/wordlists/ftp_defuser.lst new file mode 100644 index 0000000..ebea53d --- /dev/null +++ b/wordlists/ftp_defuser.lst @@ -0,0 +1,21 @@ +admin +manager +role1 +root +system + +ftp +root +r00t +ftp123 +ftpadmin +sysadmin +25 +587 +ftp-587 +cisco +apc +pass +security +user +sys diff --git a/wordlists/pop_defpass.lst b/wordlists/pop_defpass.lst new file mode 100644 index 0000000..1295dcb --- /dev/null +++ b/wordlists/pop_defpass.lst @@ -0,0 +1,24 @@ +admin +password + +manager +letmein +cisco +default +root +apc +pass +security +user +system +sys +none +toor +pop +pop123 +popadmin +apc +pass123 +security +user +sys diff --git a/wordlists/pop_defuser.lst b/wordlists/pop_defuser.lst new file mode 100644 index 0000000..697c54c --- /dev/null +++ b/wordlists/pop_defuser.lst @@ -0,0 +1,21 @@ +admin +manager +role1 +root +system + +pop +root +r00t +pop123 +popadmin +sysadmin +25 +587 +pop-587 +cisco +apc +pass +security +user +sys diff --git a/wordlists/smtp_defpass.lst b/wordlists/smtp_defpass.lst new file mode 100644 index 0000000..8dc4a04 --- /dev/null +++ b/wordlists/smtp_defpass.lst @@ -0,0 +1,24 @@ +admin +password + +manager +letmein +cisco +default +root +apc +pass +security +user +system +sys +none +toor +smtp +smtp123 +smtpadmin +apc +pass123 +security +user +sys diff --git a/wordlists/smtp_defuser.lst b/wordlists/smtp_defuser.lst new file mode 100644 index 0000000..f07eb51 --- /dev/null +++ b/wordlists/smtp_defuser.lst @@ -0,0 +1,21 @@ +admin +manager +role1 +root +system + +smtp +root +r00t +smtp123 +smtpadmin +sysadmin +25 +587 +smtp-587 +cisco +apc +pass +security +user +sys diff --git a/wordlists/sql_defpass.lst b/wordlists/sql_defpass.lst new file mode 100644 index 0000000..0bd8ca5 --- /dev/null +++ b/wordlists/sql_defpass.lst @@ -0,0 +1,24 @@ +admin +password + +manager +letmein +cisco +default +root +apc +pass +security +user +system +sys +none +toor +sql +sql123 +sqladmin +apc +pass123 +security +user +sys diff --git a/wordlists/sql_defuser.lst b/wordlists/sql_defuser.lst new file mode 100644 index 0000000..1e79a2d --- /dev/null +++ b/wordlists/sql_defuser.lst @@ -0,0 +1,21 @@ +admin +manager +role1 +root +system + +sql +root +r00t +sql123 +sqladmin +sysadmin +25 +587 +sql-587 +cisco +apc +pass +security +user +sys diff --git a/wordlists/ssh_defpass.lst b/wordlists/ssh_defpass.lst new file mode 100644 index 0000000..4265613 --- /dev/null +++ b/wordlists/ssh_defpass.lst @@ -0,0 +1,24 @@ +admin +password + +manager +letmein +cisco +default +root +apc +pass +security +user +system +sys +none +toor +ssh +ssh123 +sshadmin +apc +pass123 +security +user +sys diff --git a/wordlists/ssh_defuser.lst b/wordlists/ssh_defuser.lst new file mode 100644 index 0000000..8b954fd --- /dev/null +++ b/wordlists/ssh_defuser.lst @@ -0,0 +1,21 @@ +admin +manager +role1 +root +system + +ssh +root +r00t +ssh123 +sshadmin +sysadmin +25 +587 +ssh-587 +cisco +apc +pass +security +user +sys diff --git a/wordlists/telnet_defpass.lst b/wordlists/telnet_defpass.lst new file mode 100644 index 0000000..bd814ea --- /dev/null +++ b/wordlists/telnet_defpass.lst @@ -0,0 +1,25 @@ +admin +password + +manager +letmein +cisco +default +root +apc +pass +security +user +system +sys +none +toor +telnet +tel123 +cisco +apc +telnetadmin +pass +security +user +sys diff --git a/wordlists/telnet_defuser.lst b/wordlists/telnet_defuser.lst new file mode 100644 index 0000000..ef25dc6 --- /dev/null +++ b/wordlists/telnet_defuser.lst @@ -0,0 +1,17 @@ +manager +role1 +admin +root +system + +telnet +root +r00t +tel123 +telnetadmin +cisco +apc +pass +security +user +sys diff --git a/wordlists/xmpp_defpass.lst b/wordlists/xmpp_defpass.lst new file mode 100644 index 0000000..48c7b11 --- /dev/null +++ b/wordlists/xmpp_defpass.lst @@ -0,0 +1,25 @@ +admin +password + +manager +letmein +cisco +default +root +apc +pass +security +xmpp +xmppadmin +xmpp123 +user +system +sys +none +toorxmpp +apc +pass +pass123 +security +user +sys diff --git a/wordlists/xmpp_defuser.lst b/wordlists/xmpp_defuser.lst new file mode 100644 index 0000000..6949f57 --- /dev/null +++ b/wordlists/xmpp_defuser.lst @@ -0,0 +1,19 @@ +admin +manager +role1 +root +system + +xmpp +root +r00t +xmpp123 +xmppadmin +cisco +5222 +xmpp-5222 +apc +pass +security +user +sys