https://github.com/flashnuke/ftpnuker

A tool for brute-forcing FTP
https://github.com/flashnuke/ftpnuker

bash cyber ftp ftp-security kali-linux pentest pentesting pentesting-tools security

Last synced: 10 months ago
JSON representation

A tool for brute-forcing FTP

• Host: GitHub
• URL: https://github.com/flashnuke/ftpnuker
• Owner: flashnuke
• License: gpl-3.0
• Created: 2022-08-11T09:23:36.000Z (almost 4 years ago)
• Default Branch: main
• Last Pushed: 2022-12-15T09:46:28.000Z (over 3 years ago)
• Last Synced: 2025-04-03T08:21:57.786Z (about 1 year ago)
• Topics: bash, cyber, ftp, ftp-security, kali-linux, pentest, pentesting, pentesting-tools, security
• Language: Shell
• Homepage:
• Size: 19.5 KB
• Stars: 6
• Watchers: 1
• Forks: 1
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
# FTPNuker

A simple tool for brute-forcing FTP using basic cURL commands. 



## Usage

Simply run `./FTPNuker.sh target_host user_name path_to_passlist.txt` 

The script sends simple cURL requests with the credentials, and scans the response for success login codes (`225, 226`).

### Internal Settings

You can modify the `cURL` timeout, target port and frequency of progress echoing inside the bash file.

## General Notes

* This script does not attempt [anonymous login](https://securityforeveryone.com/tools/anonymous-ftp-login-checker)

* This won't work on machines that implement protection against FTP bruteforcing

# Disclaimer

This tool is only for testing and can only be used where strict consent has been given. Do not use it for illegal purposes! It is the end user’s responsibility to obey all applicable local, state and federal laws. I assume no liability and am not responsible for any misuse or damage caused by this tool and software.

Distributed under the GNU License.