itsMe Posted May 17, 2023 Share Posted May 17, 2023 This is the hidden content, please Sign In or Sign Up Penetration tests on SSH servers using dictionary attacks. Written in C. Disclaimer This tool is for ethical testing purpose only. cbrutekrag and its owners can't be held responsible for misuse by users. Users have to act as permitted by local law rules. v.0.5.0 Latest Added Support for custom port (argument: -p ) both on scan and bruteforce phases. Dry-run (argument: -D) Added the initial basis to support different ports on different targets Now is possible to specify the port on targets list (ex: 10.10.1.10:2222) (see #5) Shows time elapsed on each phase. Increase the maximum file descriptor number that can be opened by this process. manpages (man cbrutekrag) Debug bracktrace symbols Ignore as default non OpenSSH servers (argument flag -a to accept) Detects and skip NON SSH servers (tcpwrapped). Ignoring servers that don't support password authentication. Changed Separate Cbrutekrag verbosity from SSHLIB verbosity. (arguments: -v and -V respectively). The default maximum number of threads is calculated automatically. Allow servers detected as honeypot (argument flag -A) Improved detection of non-eligible servers. Removed Removed port option (-p ) in favor of new targets syntax (191.168.0.0/24:2222) Fixed Wait until all forks finished her work. Ignore SIGPIPE Fixed false positives in servers which login are interactive. This is the hidden content, please Sign In or Sign Up Link to comment Share on other sites More sharing options...
Recommended Posts