Bruteworm ~ A simple worm that uses brute force and dictionary attacks through the network to infect vulnerable machines.
Bruteworm is A simple worm that uses brute force and dictionary attacks through the network to infect vulnerable machines.
Inspired from the famous SMB Worm Tool.
Currently limited to making connections with SMB directly over TCP (445) and SMB via NetBIOS API (139), but I may add support for more protocols in the future.
+ Python 2.7
+ Nmap 6.4
+ Generates LM/NTLM hash lists from dictionary words or variable length permutations of specified alphabets
+ Scans for hosts with SMB running (forwards to Nmap) and performs OS detection upon session negotiation
+ Copies files from local host to public or administrative shares when correct password found
– Make worm standalone so it can replicate itself more easily – as opposed to only acting as a dropper
– Add support for remotely executing copied files using scheduled tasks or other API
– Add support for user enumeration