Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/jeremy-rifkin/sudo-guesser

Brute force sudo guesses
https://github.com/jeremy-rifkin/sudo-guesser

Last synced: 9 days ago
JSON representation

Brute force sudo guesses

Host: GitHub
URL: https://github.com/jeremy-rifkin/sudo-guesser
Owner: jeremy-rifkin
Created: 2023-03-14T21:26:12.000Z (over 1 year ago)
Default Branch: master
Last Pushed: 2023-03-14T21:34:19.000Z (over 1 year ago)
Last Synced: 2024-04-18T14:11:03.627Z (7 months ago)
Language: Python
Size: 1.95 KB
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# Sudo Guesser

This script brute forces sudo password guesses. By default it generates guesses using [john the ripper][j].

Motivation: I forgot my password to a system I didn't have physical access to after a month of not typing it, but I had
a rough idea of what it was.

How to use:
- Configure and build john the ripper
- Populate `base.txt` with your guesses for the password (this script invokes john with --rules so john will generate
variations)
- Update the path to the john binary in the script

If the script finds the password it will be printed to stdout.

Sudo introduces a delay after an incorrect password guess is made at least in part to mitigate brute force attacks. This
mitigation is bypassed by simply launching hundreds of sudo processes in parallel. By default this script uses a python
multiprocessing pool of 200 workers.

[j]: https://github.com/openwall/john