An SSH Bruteforcer using Java, Apache Commons CLI and JCSH.
The project can be built using Gradle and has a task to make a fat jar.
To make it just use: ./gradlew shadowjar. It will be available in the app\build\libs folder.
To run use java -jar ssh-bruteforce.jar <ARGUMENTS> or use gradle to run it. Both ways MUST follow the following argument rules:
- -ip $IP_ADDR [obligatory]
- -port $SSH_PORT [obligatory]
- -user $USER_NAME_TO_TRY [obligatory]
- -dict $FILE_PATH_OF_PASSWORDS_DICTIONARY [obligatory]
- -v [verbose option to print passwords being tested, no arg]
All arguments are required except for the verbose flag.
Here's an example of this running against a Debian VM with an SSH server and a weak password. First to confirm the IP address of the SSH server:
To confirm it's running SSH:
To prove the authentication details using PuTTY tools:
Using the application we can bruteforce with dictionary attack (please note the -target argument has, in newer builds, been replaced with -ip for simplicity):
To be done:
- Multithreaded to run quicker (done, but has to be severely improved...)
- Variable timeout
- Dictionary attack on username
- Attack several ports for hidden SSH ports
- Log instead of printing to stdout