diff --git a/CHANGELOG.md b/CHANGELOG.md index 1aae660..2524fbc 100755 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,4 +1,5 @@ ## CHANGELOG: +* v2.3 Updated default credentials for Rasberry Pi/Kali * v2.2 Added CVE-2020-29583 Zyxel SSH Hardcoded Credentials * v2.1 Added Kali XFCE4 start menu application * v2.1 Added 0day vulnerability (backdoor) in firmware for HiSilicon-based DVRs, NVRs and IP cameras diff --git a/brutex b/brutex index 894613d..28d79c0 100755 --- a/brutex +++ b/brutex @@ -17,7 +17,7 @@ TARGET="$1" PORT="$2" -VER="2.2" +VER="2.3" LOOT_DIR=/usr/share/brutex/loot FTP_USER_PASS="/usr/share/brutex/wordlists/ftp-default-userpass.txt" FTP_USERS="/usr/share/brutex/wordlists/ftp_defuser.lst" diff --git a/wordlists/password.lst b/wordlists/password.lst index 3d966f2..49ba26a 100755 --- a/wordlists/password.lst +++ b/wordlists/password.lst @@ -1,44 +1,52 @@ -anonymous -owaspbwa -toor -alpine -<<< %s(un='%s') = %u -FGTAbc11*xy+Qqz27 -bug -123456 -password +111111 +123123 +1234 12345 +123456 +1234567 12345678 -qwerty 1234567890 -1234 +696969 +abc123 +access +alpine +anonymous baseball +batman +bug +dietpi dragon +FGTAbc11*xy+Qqz27 football -1234567 -monkey +ftp +guest +kali letmein -abc123 -111111 -mustang -access -shadow +libreelec master michael -superman -696969 -123123 -batman -trustno1 -ftp -guest +monkey +mustang +osmc +owaspbwa +password +password1 Password1 +password12 Password12 +password123 Password123 +password123$ Password123$ Password1234 -password1 -password12 -password123 -password123$ -PrOw!aN_fXp \ No newline at end of file +PrOw!aN_fXp +qwerty +raspberry +rasplex +rokos +shadow +<<< %s(un='%s') = %u +superman +toor +trustno1 +ubuntu diff --git a/wordlists/password_weak.txt b/wordlists/password_weak.txt index ff65e37..76c25fa 100755 --- a/wordlists/password_weak.txt +++ b/wordlists/password_weak.txt @@ -1,6 +1,9 @@ anonymous owaspbwa toor +kali +raspberry +ubuntu <<< %s(un='%s') = %u FGTAbc11*xy+Qqz27 bug diff --git a/wordlists/simple-users.txt b/wordlists/simple-users.txt index 37b27d6..d5691c5 100755 --- a/wordlists/simple-users.txt +++ b/wordlists/simple-users.txt @@ -1,35 +1,40 @@ -admin -administrator -anonymous -backup -bee -ftp -guest -GUEST -info -mail -mailadmin -msfadmin -mysql -nobody -oracle -owaspbwa -postfix -postgres -private -proftpd -public -root -superadmin -support -sys -system -systemadmin -systemadministrator -test -tomcat -user -webmaster -www-data -Fortimanager_Access -zyfwp \ No newline at end of file +admin +administrator +anonymous +backup +bee +ftp +guest +GUEST +info +mail +mailadmin +msfadmin +mysql +nobody +oracle +owaspbwa +postfix +postgres +private +proftpd +public +pi +kali +root +superadmin +support +sys +system +systemadmin +systemadministrator +test +tomcat +user +webmaster +www-data +Fortimanager_Access +zyfwp +osmc +rokos +ubuntu diff --git a/wordlists/ssh-default-userpass.txt b/wordlists/ssh-default-userpass.txt index 721d7c4..0993b2f 100755 --- a/wordlists/ssh-default-userpass.txt +++ b/wordlists/ssh-default-userpass.txt @@ -1,122 +1,123 @@ -root:calvin -root:root -root:toor -administrator:password -NetLinx:password -administrator:Amx1234! -amx:password -amx:Amx1234! +acitoolkit:acitoolkit admin:1988 admin:admin -Administrator:Vision2 -cisco:cisco -c-comatic:xrtwk318 -root:qwasyx21 +admin:admin123 +admin:avocent +admin:hipchat admin:insecure -pi:raspberry -user:user -root:default -root:leostream -leo:leo -localadmin:localadmin -fwupgrade:fwupgrade -root:rootpasswd -admin:password -root:timeserver -admin:password +administrator:Amx1234! +administrator:password +Administrator:p@ssw0rd +Administrator:Vision2 +admin:ManagementConsole2015 admin:motorola -cloudera:cloudera -root:p@ck3tf3nc3 +admin:password +admin:pfsense +admin:superuser +admin:symbol +admin:Symbol +amx:Amx1234! +amx:password apc:apc +c-comatic:xrtwk318 +cirros:cubswin:) +cisco:cisco +cloudera:cloudera +debian:debian +debian:sixaola +debian:temppwd +default: +default:video +demo:fai device:apc +elk_user:forensics +enisa:enisa eurek:eurek +ftp:video +fwupgrade:fwupgrade +geosolutions:Geos +hunter:hunter +hxeadm:HXEHana1 +kali:kali +kali:toor +leo:leo +localadmin:localadmin +m202:m202 +maint:password +misp:Password1234 +myshake:shakeme +nao:nao +NetLinx:password netscreen:netscreen -admin:avocent -root:linux -sconsole:12345 +nexthink:123456 +openhabian:openhabian +osbash:osbash +osboxes:osboxes.org +pi:raspberry +plexuser:rasplex +public:publicpass +pyimagesearch:deeplearning +remnux:malware root:5up -cirros:cubswin:) -root:uClinux +root:7ujMko0admin +root:7ujMko0vizxv root:alpine -root:dottie root:arcsight -root:unitrends1 -vagrant:vagrant -root:vagrant -m202:m202 -demo:fai -root:fai +root:blackarch +root:calvin root:ceadmin -maint:password -root:palosanto -root:ubuntu1404 root:cubox-i -debian:debian +root:cxlinux +root:D13HH[ +root:dasdec1 root:debian -root:xoa +root:default +root:dottie +root:fai +root:freenas +root:indigo +root:kali +root:leostream +root:libreelec +root:linux +root:max2play +root:nas4free +root:NM1$88 +root:nosoup4u +root:openelec +root:openmediavault +root:osboxes.org +root:palosanto +root:p@ck3tf3nc3 +root:plex +root:qwasyx21 +root:rasplex +root:root +root:root01 +root:rootpasswd +root:screencast root:sipwise -debian:temppwd root:sixaola -debian:sixaola -myshake:shakeme -stackato:stackato -root:screencast root:stxadmin -root:nosoup4u -root:indigo -root:video -default:video -default: -ftp:video -nexthink:123456 -ubnt:ubnt +root:timeserver +root:toor root:ubnt +root:ubuntu1404 +root:uClinux +root:unitrends1 +root:vagrant +root:video +root:xoa +root:ys123456 +root:zlxx. +root:Zte521 sansforensics:forensics -elk_user:forensics -osboxes:osboxes.org -root:osboxes.org sans:training -user:password -misp:Password1234 -hxeadm:HXEHana1 -acitoolkit:acitoolkit -osbash:osbash -enisa:enisa -geosolutions:Geos -pyimagesearch:deeplearning -root:NM1$88 -remnux:malware -hunter:hunter -plexuser:rasplex -root:openelec -root:rasplex -root:plex -root:openmediavault -root:ys123456 -root:libreelec -openhabian:openhabian -admin:ManagementConsole2015 -public:publicpass -admin:hipchat -nao:nao +sconsole:12345 +stackato:stackato support:symantec -root:max2play -admin:pfsense -root:root01 -root:nas4free +ubnt:ubnt USERID:PASSW0RD -Administrator:p@ssw0rd -root:freenas -root:cxlinux -admin:symbol -admin:Symbol -admin:superuser -admin:admin123 -root:D13HH[ -root:blackarch -root:dasdec1 -root:7ujMko0admin -root:7ujMko0vizxv -root:Zte521 -root:zlxx. -zyfwp:PrOw!aN_fXp \ No newline at end of file +user:password +user:user +vagrant:vagrant diff --git a/wordlists/ssh_defpass.lst b/wordlists/ssh_defpass.lst index f1dbf64..a25a3bf 100644 --- a/wordlists/ssh_defpass.lst +++ b/wordlists/ssh_defpass.lst @@ -1,23 +1,29 @@ admin -password -manager -letmein +apc cisco default -root -apc +dietpi +kali +letmein +libreelec +manager +none +osmc pass +pass123 +password +pi +raspberry +rasplex +rokos +root security -user -system -sys -none -toor ssh ssh123 sshadmin -apc -pass123 -security -user sys +system +toor +ubuntu +user +zyfwp diff --git a/wordlists/ssh_defuser.lst b/wordlists/ssh_defuser.lst index f5bdd08..e23a1ca 100644 --- a/wordlists/ssh_defuser.lst +++ b/wordlists/ssh_defuser.lst @@ -1,20 +1,20 @@ + +25 +587 admin +apc +cisco manager +pass +r00t role1 root -system +security ssh -root -r00t ssh123 +ssh-587 sshadmin +sys sysadmin -25 -587 -ssh-587 -cisco -apc -pass -security +system user -sys diff --git a/wordlists/telnet-default-userpass.txt b/wordlists/telnet-default-userpass.txt index dbfa2d3..b50384a 100755 --- a/wordlists/telnet-default-userpass.txt +++ b/wordlists/telnet-default-userpass.txt @@ -143,9 +143,4 @@ admin:symbol admin:Symbol admin:superuser admin:admin123 -root:20080826 -root:xmhdipc -root:klv123 -root:xc3511 -root:jvbzd -root:hi3518 \ No newline at end of file +root:20080826 \ No newline at end of file diff --git a/wordlists/telnet_defpass.lst b/wordlists/telnet_defpass.lst index c5c9a1a..bd814ea 100644 --- a/wordlists/telnet_defpass.lst +++ b/wordlists/telnet_defpass.lst @@ -23,8 +23,3 @@ pass security user sys -xmhdipc -klv123 -xc3511 -jvbzd -hi3518 \ No newline at end of file