/crssh

SSH password crack for penetration tests using brute force and dictionary attacks.

Primary LanguageGoMIT LicenseMIT

crssh

SSH password crack for penetration tests using brute force and dictionary attacks.

Requirement

Go 1.15+

Install

go get github.com/hlts2/crssh

Attack Method

  • Brute Force Attack
  • Dictionary Attack

Usage

$ crssh --help
penetration testing tool for ssh server

Usage:
  crssh [flags]

Flags:
  -b, --bruteforce    set brute force attack
  -d, --dictionary    set dictionary attack
  -h, --help          help for crssh
  -p, --port uint     set port number (default 22)
  -s, --size uint     set password size for brute force attack (default 4)
  -u, --user string   set user name (default "root")
  -v, --version       version for crssh

Example

Dictionary Attack

Execute a dictionary attack with the d option.

$ crssh root@127.0.0.1 -p 2222 -d

Brute Force Attack

Execute a brute force attack with the b option.

$ crssh root@127.0.0.1 -p 2222 -b

Dictionary Attack & Brute Force Attack

Execute dictionary and brute force attacks with the d and b options.

$ crssh root@127.0.0.1 -p 2222 -db