Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/petercunha/Knock

:key: Scan the entire internet for SSH and Telnet services. Then hack them.
https://github.com/petercunha/Knock

automatic brute-force hacking internet password-cracker shodan ssh telnet worm

Last synced: about 1 month ago
JSON representation

:key: Scan the entire internet for SSH and Telnet services. Then hack them.

Awesome Lists containing this project

README

        

# Knock
Scan random IP addresses on the Internet for open SSH and Telnet ports. Then automatically hack them by using THC-Hydra. The entire process is automated by Knock, and credentials are printed to console as they are found.

When tested on a 25/5 Mbps connection, **Knock found an average of 3 server login credentials per hour.**

### Disclaimer
:warning: Using this program in it's current state is illegal in most countries. I am not responsible for your actions.

## Demo
A demo of running this software. It can take several hours on a good connection before Knock starts finding accounts. It's best to run this on a server in the background.

![Demo Image](https://i.imgur.com/rhP8XTQ.png)

## Installation
- Install the following:
- `redis`, `nmap`, `hydra`, and `node`
- Start the Redis service, edit the `.env` file to point to it
- Then run:
```bash
git clone https://github.com/petercunha/knock.git
cd knock
npm i
npm start
```

## Roadmap
- Network Worm
- Cross-platform, portable binary version of this software.
- After hacking into vulnerable service, drop the binary and start it.
- Cracking speed grows linearly with each machine hacked.
- Potentially centralized C&C through Tor (?)
- Web UI for monitoring cracking jobs and progress
- Shodan API integration
- Support for VNC, RDP, FTP, and others.

## Pull Requests Welcome!
Pull requests are welcome and encouraged! Feel free to fork, hack, and contribute to the project.

#### Notice
##### :warning: This software is under active development, features are subject to change in future versions.