Scan networks for SSH servers with default username and password
Switch branches/tags
Nothing to show
Clone or download
Pull request Compare This branch is even with atarantini:master.
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
docs
COPYING
README.rst
requirements.txt
sshdefaultscan.py

README.rst

sshdefaultscan 0.4.0

Scan networks for SSH servers with default username and password.

Use sshdefaultscan to scan networks or hosts for SSH servers, try to connect using some default username and password. It uses Nmap to provide easy and powerfull target selection and Paramiko to test credentials.

Full documentation at http://sshdefaultscan.readthedocs.org/

https://readthedocs.org/projects/sshdefaultscan/badge/?version=latest

Usage

Scan your own machine:

$ python sshdefaultscan.py 127.0.0.1

2015-06-08 21:16:57,711 - sshdefaultscan - DEBUG - Scanning...
2015-06-08 21:17:03,892 - sshdefaultscan - DEBUG - 1 hosts up, 1 total in 0.28s
2015-06-08 21:17:03,892 - sshdefaultscan - DEBUG - 127.0.0.1 Seems to have SSH open
2015-06-08 21:17:06,001 - sshdefaultscan - INFO - 127.0.0.1 Logged in with root:root in 2.11s

Your local network, with --fast to improve speed:

$ python sshdefaultscan.py --fast 192.168.1.1-254

2015-06-08 21:21:59,408 - sshdefaultscan - DEBUG - Scanning...
2015-06-08 21:22:08,807 - sshdefaultscan - DEBUG - 1 hosts up, 254 total in 3.38s
2015-06-08 21:22:08,808 - sshdefaultscan - DEBUG - 192.168.1.42 Seems to have SSH open
2015-06-08 21:22:11,463 - sshdefaultscan - DEBUG - 192.168.1.42 Authentication failed. (2.65s)

Different username or password:

$ python sshdefaultscan.py --username admin --password 1234 192.168.1.1-254

2015-06-08 21:21:59,408 - sshdefaultscan - DEBUG - Scanning...
2015-06-08 21:22:08,807 - sshdefaultscan - DEBUG - 3 hosts up, 254 total in 3.11s
2015-06-08 21:22:08,808 - sshdefaultscan - DEBUG - 192.168.1.42 Seems to have SSH open
2015-06-08 21:22:11,463 - sshdefaultscan - INFO - 192.168.1.42  Logged in with admin:1234 in 0.98s

Or a much bigger network segment:

$ python sshdefaultscan.py 192.168.99-110.1-254

2015-06-08 21:24:47,177 - sshdefaultscan - DEBUG - Scanning...
2015-06-08 21:25:16,035 - sshdefaultscan - DEBUG - 127 hosts up, 3048 total in 28.75s
2015-06-08 21:25:16,035 - sshdefaultscan - DEBUG - 192.168.109.60 Seems to have SSH open
2015-06-08 21:25:16,035 - sshdefaultscan - DEBUG - 192.168.110.182 Seems to have SSH open
2015-06-08 21:25:16,035 - sshdefaultscan - DEBUG - 192.168.110.184 Seems to have SSH open
2015-06-08 21:25:19,047 - sshdefaultscan - DEBUG - 192.168.109.60 Authentication failed. (3.01s)
2015-06-08 21:25:20,436 - sshdefaultscan - DEBUG - 192.168.110.182 Authentication failed. (1.39s)
...

See full documentation at http://sshdefaultscan.readthedocs.org/

Disclaimer

This software is provided for educational purposes and testing only: use it in your own network or with permission from the network owner. I'm not responsible of what actions people decide to take using this software. I'm not responsible if someone do something against the law using this software. Please be good and don't do anything harmful :)

Author

Andres Tarantini (atarantini@gmail.com)

License

Released under GNU GPLv3, see COPYING file for more details.