patator暴力破解工具使用教程
程序员文章站
2022-06-22 18:28:40
大家好,patator是一个python语言写的破解工具,支持很多协议,恩,ZIP居然也有
咱们首先看这里:
&nb...
大家好,patator是一个python语言写的破解工具,支持很多协议,恩,ZIP居然也有
咱们首先看这里:
| Required for | URL | Version |
--------------------------------------------------------------------------------------------------
paramiko | SSH | http://www.lag.net/paramiko/ | 1.7.7.1 |
--------------------------------------------------------------------------------------------------
pycurl | HTTP | http://pycurl.sourceforge.net/ | 7.19.0 |
--------------------------------------------------------------------------------------------------
openldap | LDAP | http://www.openldap.org/ | 2.4.24 |
--------------------------------------------------------------------------------------------------
impacket | SMB | http://oss.coresecurity.com/projects/impacket.html | svn#414 |
--------------------------------------------------------------------------------------------------
cx_Oracle | Oracle | http://cx-oracle.sourceforge.net/ | 5.0.4 |
--------------------------------------------------------------------------------------------------
mysql-python | MySQL | http://sourceforge.net/projects/mysql-python/ | 1.2.3 |
--------------------------------------------------------------------------------------------------
psycopg | PostgreSQL | http://initd.org/psycopg/ | 2.4.1 |
--------------------------------------------------------------------------------------------------
pycrypto | VNC | http://www.dlitz.net/software/pycrypto/ | 2.3 |
--------------------------------------------------------------------------------------------------
pydns | DNS | http://pydns.sourceforge.net/ | 2.3.4 |
--------------------------------------------------------------------------------------------------
pysnmp | SNMP | http://pysnmp.sf.net/ | 4.1.16a |
--------------------------------------------------------------------------------------------------
IPy | NETx keywords | https://github.com/haypo/python-ipy | 0.75 |
--------------------------------------------------------------------------------------------------
unzip | ZIP passwords | http://www.info-zip.org/ | 6.0 |
--------------------------------------------------------------------------------------------------
Java | keystore files | http://www.oracle.com/technetwork/java/javase/ | 6u29 |
--------------------------------------------------------------------------------------------------
python | | http://www.python.org/ | 2.6.6 |
--------------------------------------------------------------------------------------------------
恩,从这里可以看出,他需要的PYTHON版本是2.6.6
咱们选择一个模块来安装破解吧 选SSH吧。
paramiko | SSH | http://www.lag.net/paramiko/ | 1.7.7.1 |
他需要安装paramiko 1.7.7.1版本的,那咱们去下载来安装起来
root@Dis9Team:/tmp# wget http://www.lag.net/paramiko/download/paramiko-1.7.7.1.zip
root@Dis9Team:/tmp# unzip paramiko-1.7.7.1.zip
root@Dis9Team:/tmp# cd paramiko-1.7.7.1
root@Dis9Team:/tmp/paramiko-1.7.7.1# chmod +x setup.py
root@Dis9Team:/tmp/paramiko-1.7.7.1# python test.py
............................................................................................................ 4s 4s ......... 1s 0s ......... 1s ......... 2s ......... ........ ......... ......... ...
----------------------------------------------------------------------
Ran 109 tests in 44.546s
OK
root@Dis9Team:/tmp/paramiko-1.7.7.1# python setup.py install
running install
running build
running build_py
creating build
creating build/lib.linux-i686-2.7
creating build/lib.linux-i686-2.7/paramiko
copying paramiko/transport.py -> build/lib.linux-i686-2.7/paramiko
copying paramiko/dsskey.py -> build/lib.linux-i686-2.7/paramiko
---- 省略---
byte-compiling /usr/local/lib/python2.7/dist-packages/paramiko/util.py to util.pyc
running install_egg_info
Writing /usr/local/lib/python2.7/dist-packages/paramiko-1.7.7.1.egg-info
root@Dis9Team:/tmp/paramiko-1.7.7.1#
恩paramiko 安装号了,下面看看SSH模块能用了不?
root@Dis9Team:/home/brk/desktop# python patator_v0.3.py ssh_login --help
Usage:
ssh_login host=10.0.0.1 user=root password=FILE0 0=passwords.txt -x ignore:mesg='Authentication failed.' -x ignore,reset,retry:mesg='No existing session' -x reset:code=0
Module options:
host : hostnames or subnets to target
port : ports to target [22]
user : usernames to test
password : passwords to test
auth_type : auth type to use [password|keyboard-interactive]
persistent : use persistent connections [1|0]
* Allowed format in ()
* Allowed values in [] with the default value always listed first
Syntax:
-x actions:conditions
actions := action[,action]*
action := "ignore" | "retry" | "quit" | "reset"
conditions := condition=value[,condition=value]*
condition := "code" | "size" | "mesg" | "fgrep" | "egrep"
ignore : do not report
retry : try payload again
quit : terminate execution now
reset : close current connection in order to reconnect for next probe
code : match status code
size : match size (N or N-M or N- or -N)
mesg : match message
fgrep : search for string
egrep : search for regex
For example, to ignore all redirects to the home page:
... -x ignore:code=302,fgrep='Location: /home.html'
-e tag:encoding
tag := any unique string (eg. T@G or _@@_ or ...)
encoding := "sha1" | "md5" | "hex" | "b64"
sha1 : hash in sha1
md5 : hash in md5
hex : encode in hexadecimal
b64 : encode in base64
For example, to encode every password in base64:
... host=10.0.0.1 user=admin password=_@@_FILE0_@@_ -e _@@_:b64
Options:
-h, --help show this help message and exit
Execution:
-x arg actions and conditions, see Syntax above
--start=N start from offset N in the wordlist product
--stop=N stop at offset N
--resume=r1[,rN]* resume previous run
-e arg encode everything between two tags, see Syntax above
-C str delimiter string in combo files (default is ':')
-X str delimiter string in conditions (default is ',')
Optimization:
--rate-limit=N wait N seconds between tests (default is 0)
--rate-reset=N reset module every N tests (default is 0: never reset)
--failure-delay=N wait N seconds after a failure (default is 0.5)
--max-retries=N skip payload after N failures (default is 5) (-1 for
unlimited)
-t N, --threads=N number of threads (default is 10)
Logging:
-l DIR save output and response data into DIR
-L SFX automatically save into DIR/yyyy-mm-dd/hh:mm:ss_SFX
(DIR defaults to '/tmp/patator')
Debugging:
-d, --debug enable debug messages
root@Dis9Team:/home/brk/desktop#
恩,能用了,用法都很简单,我就不细细的说了,能批量的。。
你想要破解什么按照说明安装相应的东西就成了
摘自 http://www.dis9.com/patator-brute-force-tool-tutorial.html
咱们首先看这里:
| Required for | URL | Version |
--------------------------------------------------------------------------------------------------
paramiko | SSH | http://www.lag.net/paramiko/ | 1.7.7.1 |
--------------------------------------------------------------------------------------------------
pycurl | HTTP | http://pycurl.sourceforge.net/ | 7.19.0 |
--------------------------------------------------------------------------------------------------
openldap | LDAP | http://www.openldap.org/ | 2.4.24 |
--------------------------------------------------------------------------------------------------
impacket | SMB | http://oss.coresecurity.com/projects/impacket.html | svn#414 |
--------------------------------------------------------------------------------------------------
cx_Oracle | Oracle | http://cx-oracle.sourceforge.net/ | 5.0.4 |
--------------------------------------------------------------------------------------------------
mysql-python | MySQL | http://sourceforge.net/projects/mysql-python/ | 1.2.3 |
--------------------------------------------------------------------------------------------------
psycopg | PostgreSQL | http://initd.org/psycopg/ | 2.4.1 |
--------------------------------------------------------------------------------------------------
pycrypto | VNC | http://www.dlitz.net/software/pycrypto/ | 2.3 |
--------------------------------------------------------------------------------------------------
pydns | DNS | http://pydns.sourceforge.net/ | 2.3.4 |
--------------------------------------------------------------------------------------------------
pysnmp | SNMP | http://pysnmp.sf.net/ | 4.1.16a |
--------------------------------------------------------------------------------------------------
IPy | NETx keywords | https://github.com/haypo/python-ipy | 0.75 |
--------------------------------------------------------------------------------------------------
unzip | ZIP passwords | http://www.info-zip.org/ | 6.0 |
--------------------------------------------------------------------------------------------------
Java | keystore files | http://www.oracle.com/technetwork/java/javase/ | 6u29 |
--------------------------------------------------------------------------------------------------
python | | http://www.python.org/ | 2.6.6 |
--------------------------------------------------------------------------------------------------
恩,从这里可以看出,他需要的PYTHON版本是2.6.6
咱们选择一个模块来安装破解吧 选SSH吧。
paramiko | SSH | http://www.lag.net/paramiko/ | 1.7.7.1 |
他需要安装paramiko 1.7.7.1版本的,那咱们去下载来安装起来
root@Dis9Team:/tmp# wget http://www.lag.net/paramiko/download/paramiko-1.7.7.1.zip
root@Dis9Team:/tmp# unzip paramiko-1.7.7.1.zip
root@Dis9Team:/tmp# cd paramiko-1.7.7.1
root@Dis9Team:/tmp/paramiko-1.7.7.1# chmod +x setup.py
root@Dis9Team:/tmp/paramiko-1.7.7.1# python test.py
............................................................................................................ 4s 4s ......... 1s 0s ......... 1s ......... 2s ......... ........ ......... ......... ...
----------------------------------------------------------------------
Ran 109 tests in 44.546s
OK
root@Dis9Team:/tmp/paramiko-1.7.7.1# python setup.py install
running install
running build
running build_py
creating build
creating build/lib.linux-i686-2.7
creating build/lib.linux-i686-2.7/paramiko
copying paramiko/transport.py -> build/lib.linux-i686-2.7/paramiko
copying paramiko/dsskey.py -> build/lib.linux-i686-2.7/paramiko
---- 省略---
byte-compiling /usr/local/lib/python2.7/dist-packages/paramiko/util.py to util.pyc
running install_egg_info
Writing /usr/local/lib/python2.7/dist-packages/paramiko-1.7.7.1.egg-info
root@Dis9Team:/tmp/paramiko-1.7.7.1#
恩paramiko 安装号了,下面看看SSH模块能用了不?
root@Dis9Team:/home/brk/desktop# python patator_v0.3.py ssh_login --help
Usage:
ssh_login host=10.0.0.1 user=root password=FILE0 0=passwords.txt -x ignore:mesg='Authentication failed.' -x ignore,reset,retry:mesg='No existing session' -x reset:code=0
Module options:
host : hostnames or subnets to target
port : ports to target [22]
user : usernames to test
password : passwords to test
auth_type : auth type to use [password|keyboard-interactive]
persistent : use persistent connections [1|0]
* Allowed format in ()
* Allowed values in [] with the default value always listed first
Syntax:
-x actions:conditions
actions := action[,action]*
action := "ignore" | "retry" | "quit" | "reset"
conditions := condition=value[,condition=value]*
condition := "code" | "size" | "mesg" | "fgrep" | "egrep"
ignore : do not report
retry : try payload again
quit : terminate execution now
reset : close current connection in order to reconnect for next probe
code : match status code
size : match size (N or N-M or N- or -N)
mesg : match message
fgrep : search for string
egrep : search for regex
For example, to ignore all redirects to the home page:
... -x ignore:code=302,fgrep='Location: /home.html'
-e tag:encoding
tag := any unique string (eg. T@G or _@@_ or ...)
encoding := "sha1" | "md5" | "hex" | "b64"
sha1 : hash in sha1
md5 : hash in md5
hex : encode in hexadecimal
b64 : encode in base64
For example, to encode every password in base64:
... host=10.0.0.1 user=admin password=_@@_FILE0_@@_ -e _@@_:b64
Options:
-h, --help show this help message and exit
Execution:
-x arg actions and conditions, see Syntax above
--start=N start from offset N in the wordlist product
--stop=N stop at offset N
--resume=r1[,rN]* resume previous run
-e arg encode everything between two tags, see Syntax above
-C str delimiter string in combo files (default is ':')
-X str delimiter string in conditions (default is ',')
Optimization:
--rate-limit=N wait N seconds between tests (default is 0)
--rate-reset=N reset module every N tests (default is 0: never reset)
--failure-delay=N wait N seconds after a failure (default is 0.5)
--max-retries=N skip payload after N failures (default is 5) (-1 for
unlimited)
-t N, --threads=N number of threads (default is 10)
Logging:
-l DIR save output and response data into DIR
-L SFX automatically save into DIR/yyyy-mm-dd/hh:mm:ss_SFX
(DIR defaults to '/tmp/patator')
Debugging:
-d, --debug enable debug messages
root@Dis9Team:/home/brk/desktop#
恩,能用了,用法都很简单,我就不细细的说了,能批量的。。
你想要破解什么按照说明安装相应的东西就成了
摘自 http://www.dis9.com/patator-brute-force-tool-tutorial.html
推荐阅读