SSH PuTTY login bruteforcer
The ssh-putty-brute.ps1 is a wrapper script which uses PuTTY clients (either putty.exe or plink.exe) to perform SSH login bruteforce attacks.
See the main article for detailed description: https://www.infosecmatter.com/ssh-login-bruteforcer-using-putty-plink/
Usage and examples
The tool requires either putty.exe or plink.exe executables in the PATH or in the current working directory.
Here's how to use this tool:
import-module .\ssh-putty-brute.ps1
# Usage:
ssh-putty-brute [-h ip|ips.txt] [-p port] [-u user|users.txt] [-pw pass|pwdlist.txt]
# Examples:
ssh-putty-brute -h 10.10.5.11 -p 22 -u root -pw P@ssw0rd
ssh-putty-brute -h 10.10.5.11 -p 22 -u root -pw (Get-Content .\pwdlist.txt)
Screenshots
SSH login attack against a single target:
SSH password spraying accross the network:
Hunting for default SSH credentials:
For more information, visit: https://www.infosecmatter.com/ssh-login-bruteforcer-using-putty-plink/