Sunday, August 30, 2020

Osueta: A Simple Python Script To Exploit The OpenSSH User Enumeration Timing Attack


About Osueta?
   Osueta it's a simple Python 2 script to exploit the OpenSSH User Enumeration Timing Attack, present in OpenSSH versions <= 7.2 and >= 5.*. The script has the ability to make variations of the username employed in the bruteforce attack, and the possibility to establish a DoS condition in the OpenSSH server.

    Read more: OpenSSH User Enumeration Time-Based Attack

   The bug was corrected in OpenSSH version 7.3.

   Authors of Osueta:

Osueta's Installation
   For Linux users, open your Terminal and enter these commands:
   If you're Windows users, follow these steps:
  • Install Python 2.7.x from Python.org first. On Install Python 2.7.x Setup, choose Add python.exe to Path.
  • Download Osueta-master zip file.
  • Then unzip it.
  • Open CMD or PowerShell window at the Osueta folder you have just unzipped and enter these commands:
    pip install python-nmap paramiko IPy
    python osueta.py -h

Advice: Like others offensive tools, the authors disclaims all responsibility in the use of this script.

Osueta help menu:

Osueta's examples:
   A single user enumeration attempt with username variations:
python2 osueta.py -H 192.168.1.6 -p 22 -U root -d 30 -v yes

   A single user enumeration attempt with no user variations a DoS attack:
python2 osueta.py -H 192.168.1.6 -p 22 -U root -d 30 -v no --dos yes

   Scanning a C class network with only one user:
python2 osueta.py -H 192.168.1.0/24 -p 22 -U root -v no 

   Scanning a C class network with usernames from a file, delay time 15 seconds and a password of 50000 characters:
python2 osueta.py -H 192.168.1.0/24 -p 22 -L usernames.txt -v yes -d 15 -l 50

More info

  1. Hacker Tools Linux
  2. Android Hack Tools Github
  3. Kik Hack Tools
  4. New Hacker Tools
  5. Hacking Tools Name
  6. Hacker Tools For Ios
  7. Pentest Box Tools Download
  8. Pentest Tools Alternative
  9. Hacker Tools For Mac
  10. What Are Hacking Tools
  11. Hacker Tools Free Download
  12. Hacker Tool Kit
  13. Pentest Tools Online
  14. Hacking App
  15. Pentest Tools Nmap
  16. Hacker Tool Kit
  17. Hacker Tools List
  18. Hack App
  19. Pentest Tools Find Subdomains
  20. Hacking Tools Windows
  21. Pentest Tools Kali Linux
  22. Pentest Reporting Tools
  23. Hacking Tools For Windows
  24. Pentest Tools Open Source
  25. World No 1 Hacker Software
  26. Hack Tools For Mac
  27. Pentest Tools Windows
  28. Hacker Tools 2020
  29. Pentest Box Tools Download
  30. Pentest Box Tools Download
  31. Tools 4 Hack
  32. Hacking Tools Online
  33. Hacker Tools Windows
  34. Bluetooth Hacking Tools Kali
  35. Hack Tools Mac
  36. Hacking App
  37. Github Hacking Tools
  38. Hacking Tools Pc
  39. Hacker Tools Windows
  40. New Hack Tools
  41. Pentest Tools Subdomain
  42. Termux Hacking Tools 2019
  43. Pentest Tools Nmap
  44. Hacks And Tools
  45. Hacker Search Tools
  46. Hacking Tools For Windows 7
  47. Hacker Tools 2019
  48. Nsa Hack Tools Download
  49. Black Hat Hacker Tools
  50. Hack Website Online Tool
  51. Hak5 Tools
  52. Physical Pentest Tools
  53. Hacker Tools List
  54. What Is Hacking Tools
  55. Pentest Tools Port Scanner
  56. Best Pentesting Tools 2018
  57. Hacker Tools For Windows
  58. Hak5 Tools
  59. Easy Hack Tools
  60. Bluetooth Hacking Tools Kali
  61. Pentest Tools For Android
  62. Hacking App
  63. Easy Hack Tools
  64. Pentest Tools Port Scanner
  65. Hacking Tools Windows
  66. Wifi Hacker Tools For Windows
  67. Hacks And Tools
  68. Hacking Tools For Windows
  69. Pentest Tools Windows
  70. Hack Tools Mac
  71. Pentest Tools Windows
  72. Android Hack Tools Github
  73. Hacking Tools For Pc
  74. Hacker Tools Mac
  75. Hacker Tools For Mac
  76. Black Hat Hacker Tools
  77. Pentest Tools Website Vulnerability
  78. Pentest Tools Bluekeep
  79. Hacking Tools Mac
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)