- NEW: proxy-banner: faster, more accurate and handsome -- with Terminal UI
- NEW: encrypt: make an AES256/GCM encrypted version of your p.lst passfile
- added license reset limits (24 resets)
- updated flags for
scan: ./spirit scan --help - secured input for license key during register and reset to avoid leaking key shell history
- added spirit arm64 and i386 compiled binaries
- changed omni to auto-ssh
- added threads/timeout to auto-ssh
- added Nmap parsing of open.lst to ./spirit parse
- redesigned
parsecommand: faster, supports nmap,masscanv1,masscan>v1 -oG parsing - fixed an issue where parse would output wrong format on old masscan syntax
- FIX: issue where brute would waste 1s every blocked host, now moves faster
- removed Basic/Pro/Ultra version segregation, now Spirit is an all-in-one tool
- improved brute, fixed hangout bug on 0 hosts
- redesigned file handling open.lst > h.lst > b.lst > found.lst
- added deterministic hosts randomization
- banner now appends to b.lst
- improved BLOCK accuracy during honey-pot scan, improving speed
- improved NOLOGIN detection, they will be stored in separate
found.nologinfile - found.nologin can be used with autossh to verify the nologins detection is accurate
- removed auto-threads limitations, you now have full control
- SSH connection errors are now being stored in
found.errors - autobanner can now use proxybrute via --proxy flag
- added Spirit beta: ./spirit upgrade --beta for latest versions
- improved spirit buy w/ ability to design your own licensing plan
- spirit Bot now let's you run Spirit commands within IRC channels: .spirit scan --lan
- partners can now check their sales:
./spirit partner sales <code> or shortform: ./spirit pp s <code> - removed license requirement for upgrade functionality
- brute: added sending found.ssh data via telegram while scan is in progress
- added output streaming to .spirit/.shell bot command
- changed spirit scan output from scan.lst to h.lst
- nologins won't display on Found[n] hud
- banner will now display skipped hosts via filter.lst file
- proxybanner: fixed an issue where a crash would occur w/ very large host files
- renamed
forevertoauto-brutewhich uses masscan on a list of CIDRs on random ports and brutes them automatically then repeats - removed Warn print when a host is Found
- created Spirit Community telegram channel
- added ability to join community via
./spirit partner - fixed issues w/ auto-brute
- improved banner speed by 50%
- added more Ciphers, Key exchange algos and Macs to SSH
- renamed
jobstothreads - added brute specific threads & timeout flags
- new flags: -t for Threads and -T for timeout
- fixed an issue where brute might get stuck when hosts are less than 5
- improved TRIAL mode
- improved spirit buy, added features list
- added display of Open connections limits
- added auto-rlimit
- improved brute -- 30% more found.lst hosts
- added cve-gitlab exploit to ultra
- scan: can now specify multiple networks using comma --local 172,192
- new licensing server
- new Spirit Partner Program
- new table outlining plan features in ./spirit buy
- new Ultra license (under development)
- new encryption option for p.lst and found.lst files (Ultra only)
- fixed licensing bug on servers w/o internet
- fixed Basic license issuing spirit Pro
- fixed sporadic DB lock issue
- fixed an issue where sometimes old licenses would conflict w/ new ones when registering a server
- general improvements
- improved scan command
- updated all deps to latest
- added exploit command w/ CVE-2021-4034 & CVE-2018-14655 (./spirit exploit)
- added zimbra exploit CVE_2019_9670 (./spirit ex zimbra URL)
- improved brute efficiency
- added more statistics to brute
- added automatic changing threads wile running
- removed --filter flag from banner
- added
filter.lstfile to load SSH banner filters - made brute-key work under classic spirit license, was only available in Pro
- reduced maximum servers: 3 for classic and 6 for Pro
- fixed a bug w/ auto-changing threads, set a limit to minimum 5 threads
- added sha256sum for spirit bins
- zap now keeps atime and mtime intact when cleaning logs
- fix issue w/
./spirit forevernot being enabled for Pro license - fix issue w/
./spirit zapnot working on wtmp files - fix free 1,000 external IP logic to stop script abuse
./spirit forevernow loads custom zone.lst file- banner now filters out bad SSH versions
- banner max threads are capped at 2,500 to avoid skips
- fixed forever --append to work w/ arbitrary ports
- add
./spirit forevercommand - fix an issue on
./spirit masscanwhere high ranges like US were crashing the app - enable Pro license on ARM build
- fixed brute-key hanging on first successful attack
- improved hosts parsing, covering all edge cases
- improved banner accuracy
- added banner threads, timeout, hosts, output flags
- added rate limiting to license server (mitigate dos)
- moved scan from Pro to Classic
- moved brute-key to Pro
- Spirit includes 5 registered servers while Spirit Pro now includes 10 servers
- added './spirit reset' to delete your registered servers and start fresh
- improved helpfiles
- improved brute & banner speed
- improved automatic jobs calculations
- you can now brute faster than available hosts (removed limit)
- added 'Failed connections report' on brute
- Spirit is now free for Private IPs and up to 1,000 Public IPs without a license
./spirit scan --local all --threads 10000
- completely redesigned from the ground up TCP scanner
- understands wildcards '192..12-120.'
- convenient local addresses preconfigured 10,172,192,all
- very accurate, tries a connection twice before reporting it dead
- we struck a balance between speed and accuracy
- doesn't require root privileges
- consult the helpfile ./spirit scan --help for more information
- as always this upgrade is available by simply doing ./spirit upgrade
./spirit bot -H HOST:PORT -c "#chan" --TLS=false
- To install: ./spirit bot -H HOST:PORT -c "#chan" --TLS=false --install
- defaults to channel #root if you provide no -c flag
- installs itself in systemd using the --install flag
- supports network encryption via SSL if your IRCd has SSL configured
- config is encrypted
- monitors files on your system like /etc/shadow, /root/authorized_keys, and more and gives you a NOTICE on IRC if anyone changes them, alerting you of possible intruders so you can keep your hosts safe.
- install works only for user root for now as it's Beta
- listens to commands using .c 'command' or botNick: c 'command'
- you can easily remove all bot traces w/ ./spirit bot --clean
- you must be able to set vhost to 'localhost' on your ircd for the bot to listen to you for added security
- bla bla