SSH Bruteforce using Putty or Plink.
#1
SSH Bruteforce using Putty or Plink.

Found a pretty cool articles / tool on twitter which I thought was worth sharing here.

Full articles: https://www.infosecmatter.com/ssh-login-...tty-plink/
Github: https://github.com/InfosecMatter/SSH-PuT...ruteforcer

infosecmatters Wrote:Introducing SSH PuTTY bruteforcer
The ssh-putty-brute.ps1 tool is a wrapper around PuTTY SSH clients.
In the current form it can use either the graphical putty.exe client or the command-line version plink.exe.
This is the tool’s feature list in a nutshell:
  • Performs SSH login attacks using either putty.exe or plink.exe
  • Written in pure PowerShell – no additional modules needed
  • Non-malicious – undetected by any antivirus or endpoint protection solution
  • Practical and smart design:
    - Supports a single password attack or a dictionary attack
    - Allows performing password spraying across multiple SSH servers
    - Supports resuming, if interrupted
    - Avoids re-trying the same credentials

  • Skips already compromised SSH accounts
You can find the tool in our InfosecMatter Github repository here.
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Need help exploiting CVE-2010-4345 using exim4_string_format on a virtual server 3thos 1 471 11 hours ago
Last Post: mendax
  Using browsers cache to get passwords enmafia2 10 33,066 07-22-2021, 01:12 AM
Last Post: AXIL#SaintV
  catching private information from anyone using my wifi miker2808 5 17,501 02-05-2018, 12:34 PM
Last Post: hACkABUS
  Using dorks to gather info on target site xany 3 15,277 01-22-2018, 07:26 AM
Last Post: Vhaka