The BruteSpray works together with nmap GNMAP/XML or JSONS separated by a line and automatically supports services brute-force with default credentials using the program Medusa.
BruteSpray can even find rare ports using -sV within Nmap.
Installation
pip install -r requirements. txt
or in Kali:
apt-get install brutespray
Use
Command: python brutespray.py -h
Command: python brutespray.py –file nmap.gnmap
Command: python brutesrpay.py –file nmap.xml
Command: python brutespray.py –file nmap.xml -i
Supported services
- ssh
- ftp
- telnet
- vnc
- mssql
- mysql
- postgresql
- rsh
- imap
- nntp
- pcanywhere
- pop3
- rexec
- rlogin
- smbnt
- smtp
- svn
- vmauthd
- snmp
Usage manual
Brute spray - Port Scanning and Automated Brute Force Tool
Video guide
Snapshots applicationς
You can download the program from here.