Expect script that simulates a SSH brute force attack Post: 302913197

Sponsored Content

Top Forums Shell Programming and Scripting Expect script that simulates a SSH brute force attack Post 302913197 by ph0enix on Thursday 14th of August 2014 11:56:02 AM

08-14-2014

Registered User

Expect script that simulates a SSH brute force attack

I want to test the effectiveness of sshguard on some of my systems so I'm trying to write a script that simulates a brute force attack by sending a bunch of different username and password combinations to the servers being tested. So far I have this:

Code:

#!/usr/local/bin/expect
set timeout 3
set user test
set password test
set host 192.168.0.5
set pwd test

    spawn ssh -oPort=22 $user@$host
    expect "password"
    send $pwd"\r"
    expect "password"
    send $pwd"\r"
    expect "password"
    send $pwd"\r"
    send "exit\r"
    interact

This works fine but I would like for the script to read usernames from a file one at a time and connect as each of the users. I've seen some examples of expect loops and tried them but they all seem to read the whole file as a string instead of executing the SSH command for each line in the file. How can I make this work?

Thanks!

J.

Last edited by Corona688; 08-14-2014 at 01:03 PM..

ph0enix

View Public Profile for ph0enix

Find all posts by ph0enix

9 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

Apache brute force attack

Hi, I'm trying find out if there is a way to stop a brute force attack on a Webmail site. I'm trying to setup a webmail access, but I would like to prevent too many invalid logins from the same IP. I've looked into Snort, but I was wondering if there was an application level firewall that can...

2. UNIX for Advanced & Expert Users

Brute force SMTP attack right now help

Im currently experiancing a brute force attack on my server Nov 26 15:27:04 ws096 saslauthd: do_auth : auth failure: Nov 26 15:27:13 ws096 saslauthd: do_auth : auth failure: Nov 26 15:27:22 ws096 saslauthd: do_auth : auth failure: Nov 26 15:27:29 ws096...

3. Shell Programming and Scripting

Expect script to ssh into MMI

Guys, I know this is tricky.. I'm trying to write a script to pull info from a MMI device. Following script logins into the server and then changes to super user. Opens MMI session and then exits out. I need to run the command under the MMI session "dsp_alarm_span all" Is there any other way to...

4. Shell Programming and Scripting

SSH Expect Script

Ok, i don't know if anyone else here have had to deal with something like this before, but here's my situation. I have about 1000+ servers I need to log into to do something. What i need to do is to log into each server, go to a certain directory on each of the servers, copy the files that...

5. Shell Programming and Scripting

Expect Script to Automate SSH

How would I write an expect script to automate ssh and what file extention do expect files use?

6. Shell Programming and Scripting

Script using SSH with expect command

Hi all, I want to connect to some host with "ssh". I have googled and got some commands of "expect" and "spawn". I was not aware of these commands and tried below script. $ cat auto.sh set host xx.xx.xx.xx set password abcd@1234 set user root spawn ssh $user@$host expect "*?assword:*"...

7. Shell Programming and Scripting

Passing Password to SSH without using expect in a Script

How can I pass password in SSH command without using expect in a shell program. I don't have expect installed on my Solaris server. #!/bin/bash ssh user@hotname (how to supply pass in script?:wall:) Experts please help its very urgent. Shrawan Kumar Sahu

8. Cybersecurity

DDoS and brute force attack

How to protect DDoS and brute force attack. I want to secure my server and block attacker.

9. Shell Programming and Scripting

SFTP or scp with password in a batch script without using SSH keys and expect script

Dear All, I have a requirement where I have to SFTP or SCP a file in a batch script. Unfortunately, the destination server setup is such that it doesn't allow for shell command line login. So, I am not able to set up SSH keys. My source server is having issues with Expect. So, unable to use...

LEARN ABOUT OPENSOLARIS

lckpwdf

lckpwdf(3C)						   Standard C Library Functions 					       lckpwdf(3C)

NAME

       lckpwdf, ulckpwdf - manipulate shadow password database lock file

SYNOPSIS

       #include <shadow.h>

       int lckpwdf(void);

       int ulckpwdf(void);

DESCRIPTION

       The  lckpwdf()  and  ulckpwdf()	functions enable modification access to the password databases through the lock file. A process first uses
       lckpwdf() to lock the lock file, thereby gaining exclusive rights to modify  the   /etc/passwd  or   /etc/shadow  password  database.   See
       passwd(4) and shadow(4). Upon completing modifications, a process should release the lock on the lock file using ulckpwdf(). This mechanism
       prevents simultaneous modification of the password databases. The lock file, /etc/.pwd.lock, is used to coordinate modification	access	to
       the password databases /etc/passwd and  /etc/shadow.

RETURN VALUES

       If  lckpwdf()  is  successful in locking the file within 15 seconds, it returns 0. If unsuccessful (for example,  /etc/.pwd.lock is already
       locked), it returns -1.

       If ulckpwdf() is successful in unlocking the file  /etc/.pwd.lock, it returns 0. If unsuccessful (for example,  /etc/.pwd.lock  is  already
       unlocked), it returns -1.

USAGE

       These routines are for internal use only; compatibility is not guaranteed.

FILES

       /etc/passwd	 password database

       /etc/shadow	 shadow password database

       /etc/.pwd.lock	 lock file

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |MT-Level		     |MT-Safe			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       getpwnam(3C), getspnam(3C), passwd(4), shadow(4), attributes(5)

SunOS 5.11							    29 Dec 1996 						       lckpwdf(3C)