Esempio n. 1
0
def telnet_test_login(ip,password,username,port):
    crack=0
    tn = telnetlib.Telnet(ip,port=port,timeout=5)
    tn.read_until("login: "******"\r")
    #等一会再 接受数据
    time.sleep(4)
    msg=tn.read_some()
    tn.close()
    #判断msg是不是login fail 或者error
    if msg.strip()=='':
        lock.acquire()
        print "%s telnet's %s:%s login fail " %(ip,username,password)
        lock.release()
    if re.search("(.*?)fail",msg,re.I):
        lock.acquire()
        print "%s telnet's %s:%s login fail " %(ip,username,password)
        lock.release()
    else:
        if re.search("(.*?)incorrect",msg,re.I):
            lock.acquire()
            print "%s telnet's %s:%s login fail " %(ip,username,password)
            lock.release()
        else:
            lock.acquire()
            printGreen("%s telnet has weaken password!!-------%s:%s\r\n" %(ip,username,password))
            result.append("%s telnet has weaken password!!-------%s:%s\r\n" %(ip,username,password))
            lock.release()
            crack=1
        return crack
Esempio n. 2
0
def mysql():
    while True:
        ip,port=sp.get()
        flag=0
        usernames=file2list('mysql_user.txt')
        passwords=file2list('mysql_pass.txt')
        for username in usernames:
            #test mysql is allow connect
            try:
                db=MySQLdb.connect(ip,username,password,port=port)
            except Exception, e:
                #print e
                if e[0]==1130:
                    lock.acquire()
                    printRed("%s not allow to connect\r\n" %(ip))
                    lock.release()
                    break

            if mysql_connect(ip,username,username,port)==1:
                lock.acquire()
                printGreen("%s mysql at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,username))
                result.append("%s mysql at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,username))
                lock.release()
                break

            if mysql_connect(ip,username,username+'123',port)==1:
                lock.acquire()
                printGreen("%s mysql at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,username+'123'))
                result.append("%s mysql at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,username+'123'))
                lock.release()
                break

            if mysql_connect(ip,username,username+'123456',port)==1:
                lock.acquire()
                printGreen("%s mysql at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,username+'123456'))
                result.append("%s mysql at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,username+'123456'))
                lock.release()
                break
            if mysql_connect(ip,username,'',port)==1:
                lock.acquire()
                printGreen("%s mysql at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,''))
                result.append("%s mysql at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,''))
                lock.release()
                break

            for password in passwords:
                if mysql_connect(ip,username,password,port)==1:
                    lock.acquire()
                    printGreen("%s mysql at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,password))
                    result.append("%s mysql at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,password))
                    lock.release()
                    flag=1
                    break

            if flag==1:
                flag=0
                break

        sp.task_done()
Esempio n. 3
0
def telnet():
    while True:
        ip,port=sp.get()
        flag=0
        try:
            #弱口令爆破
            for username in usernames:
                if telnet_test_login(ip,username,username,port)==1:
                    break
                if telnet_test_login(ip,username+'123',username,port)==1:
                    break
                if telnet_test_login(ip,username+'123456',username,port)==1:
                    break
                for password in passwords:
                    tn = telnetlib.Telnet(ip,port=port,timeout=5)
                    tn.read_until("login: "******"\r")
                    #等一会再 接受数据
                    time.sleep(4)
                    msg=tn.read_some()
                    tn.close()

                    if msg.strip()=='':
                        lock.acquire()
                        print "%s telnet's %s:%s login fail " %(ip,username,password)
                        lock.release()						
                    #判断msg是不是login fail 或者error
                    if re.search("(.*?)fail",msg,re.I):
                        lock.acquire()
                        print "%s telnet's %s:%s login fail " %(ip,username,password)
                        lock.release()
                    else:
                        if re.search("(.*?)incorrect",msg,re.I):
                            lock.acquire()
                            print "%s telnet's %s:%s login fail " %(ip,username,password)
                            lock.release()
                        else:
                            lock.acquire()
                            printGreen("%s telnet has weaken password!!-------%s:%s\r\n" %(ip,username,password))
                            result.append("%s telnet has weaken password!!-------%s:%s\r\n" %(ip,username,password))
                            lock.release()
                            flag=1
                            break
                if flag == 1:
                    flag=0
                    break

        except Exception,e:
            printPink(e)

        sp.task_done()
Esempio n. 4
0
def ssh():
    while True:
        ip,port=sp.get()
        flag=0
        usernames=file2list('ssh_user.txt')
        passwords=file2list('ssh_pass.txt')
        for username in usernames:
            if ssh_connect(ip,username,username,port)==1:
                lock.acquire()
                printGreen("%s ssh service at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,username))
                result.append("%s ssh service at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,username))
                lock.release()
                break

            if ssh_connect(ip,username,username+'123',port)==1:
                    lock.acquire()
                    printGreen("%s ssh service at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,username+'123'))
                    result.append("%s ssh service at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,username+'123'))
                    lock.release()
                    break
            if ssh_connect(ip,username,username+'123456',port)==1:
                    lock.acquire()
                    printGreen("%s ssh service at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,username+'123456'))
                    result.append("%s ssh service at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,username+'123456'))
                    lock.release()
                    break
            if ssh_connect(ip,username,'',port)==1:
                    lock.acquire()
                    printGreen("%s ssh service at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,''))
                    result.append("%s ssh service at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,''))
                    lock.release()
                    break




            for password in passwords:
                if ssh_connect(ip,username,password,port)==1:
                        lock.acquire()
                        printGreen("%s ssh service at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,password))
                        result.append("%s ssh service at %s has weaken password!!-------%s:%s\r\n" %(ip,port,username,password))
                        lock.release()
                        flag=1
                        break
            if flag==1:
                flag=0
                break

        sp.task_done()
Esempio n. 5
0
def telnet_test_login(ip, password, username, port):
    crack = 0
    tn = telnetlib.Telnet(ip, port=port, timeout=5)
    tn.read_until("login: "******"\r")
    #等一会再 接受数据
    time.sleep(4)
    msg = tn.read_some()
    tn.close()
    #判断msg是不是login fail 或者error
    if msg.strip() == '':
        lock.acquire()
        print "%s telnet's %s:%s login fail " % (ip, username, password)
        lock.release()
    if re.search("(.*?)fail", msg, re.I):
        lock.acquire()
        print "%s telnet's %s:%s login fail " % (ip, username, password)
        lock.release()
    else:
        if re.search("(.*?)incorrect", msg, re.I):
            lock.acquire()
            print "%s telnet's %s:%s login fail " % (ip, username, password)
            lock.release()
        else:
            lock.acquire()
            printGreen("%s telnet has weaken password!!-------%s:%s\r\n" %
                       (ip, username, password))
            result.append("%s telnet has weaken password!!-------%s:%s\r\n" %
                          (ip, username, password))
            lock.release()
            crack = 1
        return crack
Esempio n. 6
0
def ssh():
    while True:
        ip, port = sp.get()
        flag = 0
        usernames = file2list('ssh_user.txt')
        passwords = file2list('ssh_pass.txt')
        for username in usernames:
            for password in passwords:
                if ssh_connect(ip, username, password, port) == 1:
                    lock.acquire()
                    printGreen(
                        "%s ssh service at %s has weaken password!!-------%s:%s\r\n"
                        % (ip, port, username, password))
                    result.append(
                        "%s ssh service at %s has weaken password!!-------%s:%s\r\n"
                        % (ip, port, username, password))
                    lock.release()
                    flag = 1
                    break
            if flag == 1:
                flag = 0
                break

        sp.task_done()
Esempio n. 7
0
def telnet():
    while True:
        ip, port = sp.get()
        flag = 0
        try:
            #弱口令爆破
            for username in usernames:
                if telnet_test_login(ip, username, username, port) == 1:
                    break
                if telnet_test_login(ip, username + '123', username,
                                     port) == 1:
                    break
                if telnet_test_login(ip, username + '123456', username,
                                     port) == 1:
                    break
                for password in passwords:
                    tn = telnetlib.Telnet(ip, port=port, timeout=5)
                    tn.read_until("login: "******"\r")
                    #等一会再 接受数据
                    time.sleep(4)
                    msg = tn.read_some()
                    tn.close()

                    if msg.strip() == '':
                        lock.acquire()
                        print "%s telnet's %s:%s login fail " % (ip, username,
                                                                 password)
                        lock.release()
                    #判断msg是不是login fail 或者error
                    if re.search("(.*?)fail", msg, re.I):
                        lock.acquire()
                        print "%s telnet's %s:%s login fail " % (ip, username,
                                                                 password)
                        lock.release()
                    else:
                        if re.search("(.*?)incorrect", msg, re.I):
                            lock.acquire()
                            print "%s telnet's %s:%s login fail " % (
                                ip, username, password)
                            lock.release()
                        else:
                            lock.acquire()
                            printGreen(
                                "%s telnet has weaken password!!-------%s:%s\r\n"
                                % (ip, username, password))
                            result.append(
                                "%s telnet has weaken password!!-------%s:%s\r\n"
                                % (ip, username, password))
                            lock.release()
                            flag = 1
                            break
                if flag == 1:
                    flag = 0
                    break

        except Exception, e:
            printPink(e)

        sp.task_done()
Esempio n. 8
0
def smb():
    while True:
        ip, port = sp.get()
        flag = 0
        usernames = file2list('smb_user.txt')
        passwords = file2list('smb_pass.txt')

        for username in usernames:
            if smb_connect(ip, username, username) == 1:
                lock.acquire()
                printGreen(
                    "%s smb at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, port, username, username))
                result.append(
                    "%s smb at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, port, username, username))
                lock.release()
                break

            if smb_connect(ip, username, username + '123') == 1:
                lock.acquire()
                printGreen(
                    "%s smb at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, port, username, username + '123'))
                result.append(
                    "%s smb at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, port, username, username + '123'))
                lock.release()
                break

            if smb_connect(ip, username, username + '123456') == 1:
                lock.acquire()
                printGreen(
                    "%s smb at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, port, username, username + '123456'))
                result.append(
                    "%s smb at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, port, username, username + '123456'))
                lock.release()
                break
            if smb_connect(ip, username, '') == 1:
                lock.acquire()
                printGreen(
                    "%s smb at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, username, ''))
                result.append(
                    "%s smb at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, port, username, ''))
                lock.release()
                break

            for password in passwords:
                if smb_connect(ip, username, password) == 1:
                    lock.acquire()
                    printGreen(
                        "%s smb at %s has weaken password!!-------%s:%s\r\n" %
                        (ip, port, username, password))
                    result.append(
                        "%s smb at %s has weaken password!!-------%s:%s\r\n" %
                        (ip, port, username, password))
                    lock.release()
                    flag = 1
                    break
            if flag == 1:
                flag = 0
                break

        sp.task_done()
Esempio n. 9
0
def mysql():
    while True:
        ip, port = sp.get()
        flag = 0
        usernames = file2list('mysql_user.txt')
        passwords = file2list('mysql_pass.txt')
        for username in usernames:
            #test mysql is allow connect
            try:
                db = MySQLdb.connect(ip, username, password, port=port)
            except Exception, e:
                #print e
                if e[0] == 1130:
                    lock.acquire()
                    printRed("%s not allow to connect\r\n" % (ip))
                    lock.release()
                    break

            if mysql_connect(ip, username, username, port) == 1:
                lock.acquire()
                printGreen(
                    "%s mysql at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, port, username, username))
                result.append(
                    "%s mysql at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, port, username, username))
                lock.release()
                break

            if mysql_connect(ip, username, username + '123', port) == 1:
                lock.acquire()
                printGreen(
                    "%s mysql at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, port, username, username + '123'))
                result.append(
                    "%s mysql at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, port, username, username + '123'))
                lock.release()
                break

            if mysql_connect(ip, username, username + '123456', port) == 1:
                lock.acquire()
                printGreen(
                    "%s mysql at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, port, username, username + '123456'))
                result.append(
                    "%s mysql at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, port, username, username + '123456'))
                lock.release()
                break
            if mysql_connect(ip, username, '', port) == 1:
                lock.acquire()
                printGreen(
                    "%s mysql at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, port, username, ''))
                result.append(
                    "%s mysql at %s has weaken password!!-------%s:%s\r\n" %
                    (ip, port, username, ''))
                lock.release()
                break

            for password in passwords:
                if mysql_connect(ip, username, password, port) == 1:
                    lock.acquire()
                    printGreen(
                        "%s mysql at %s has weaken password!!-------%s:%s\r\n"
                        % (ip, port, username, password))
                    result.append(
                        "%s mysql at %s has weaken password!!-------%s:%s\r\n"
                        % (ip, port, username, password))
                    lock.release()
                    flag = 1
                    break

            if flag == 1:
                flag = 0
                break

        sp.task_done()