GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → op7ic → shadowbroker-smb-scanner

op7ic / shadowbroker-smb-scanner

Licence: GPL-3.0 license
shadowbroker SMB exploit scanner. Scans for ETERNALSYNERGY ETERNALBLUE ETERNALROMANCE ETHERNALCHAMPION

Programming Languages

python
139335 projects - #7 most used programming language

Labels

smbsecurity-toolsshadowbrokers

Projects that are alternatives of or similar to shadowbroker-smb-scanner

cockpit-samba-manager
A Cockpit plugin to manage Samba shares and users.
Stars: ✭ 28 (-3.45%)
Mutual labels:  smb
Impacket
Impacket is a collection of Python classes for working with network protocols.
Stars: ✭ 8,037 (+27613.79%)
Mutual labels:  smb
automile-php
Automile offers a simple, smart, cutting-edge telematics solution for businesses to track and manage their business vehicles.
Stars: ✭ 28 (-3.45%)
Mutual labels:  smb
ksmbd
ksmbd kernel server(SMB/CIFS server)
Stars: ✭ 98 (+237.93%)
Mutual labels:  smb
smb-summit-hackathon
Build Blocks for the SAP SMB Summit Hackathons.
Stars: ✭ 23 (-20.69%)
Mutual labels:  smb
FindUncommonShares
FindUncommonShares.py is a Python equivalent of PowerView's Invoke-ShareFinder.ps1 allowing to quickly find uncommon shares in vast Windows Domains.
Stars: ✭ 186 (+541.38%)
Mutual labels:  smb
Eqgrp lost in translation
Decrypted content of odd.tar.xz.gpg, swift.tar.xz.gpg and windows.tar.xz.gpg
Stars: ✭ 1,666 (+5644.83%)
Mutual labels:  shadowbrokers
dash
Server control panel
Stars: ✭ 22 (-24.14%)
Mutual labels:  smb
fs.smbfs
Pyfilesystem2 over SMB using pysmb
Stars: ✭ 21 (-27.59%)
Mutual labels:  smb
automile-net
Automile offers a simple, smart, cutting-edge telematics solution for businesses to track and manage their business vehicles.
Stars: ✭ 24 (-17.24%)
Mutual labels:  smb
user external
👥 External user authentication methods like IMAP, SMB and FTP
Stars: ✭ 80 (+175.86%)
Mutual labels:  smb
smbj-rpc
Created by Paul Miseiko via the GitHub Connector
Stars: ✭ 31 (+6.9%)
Mutual labels:  smb
ksmbd
ksmbd kernel server(SMB/CIFS server)
Stars: ✭ 181 (+524.14%)
Mutual labels:  smb
Level-Headed
Random Level Generator for Super Mario Bros. 1 on the NES
Stars: ✭ 100 (+244.83%)
Mutual labels:  smb
SMBRat
A Windows Remote Administration Tool in Visual Basic with UNC paths
Stars: ✭ 23 (-20.69%)
Mutual labels:  smb
seahorse
ELKFH - Elastic, Logstash, Kibana, Filebeat and Honeypot (HTTP, HTTPS, SSH, RDP, VNC, Redis, MySQL, MONGO, SMB, LDAP)
Stars: ✭ 31 (+6.9%)
Mutual labels:  smb
Middleware
TrueNAS CORE/Enterprise/SCALE Middleware Git Repository
Stars: ✭ 1,851 (+6282.76%)
Mutual labels:  smb
smbaudit
Perform various SMB-related attacks, particularly useful for testing large Active Directory environments.
Stars: ✭ 31 (+6.9%)
Mutual labels:  smb
rpc2socks
Post-exploit tool that enables a SOCKS tunnel via a Windows host using an extensible custom RPC proto over SMB through a named pipe.
Stars: ✭ 126 (+334.48%)
Mutual labels:  smb
pmOCR
A wrapper for tesseract / abbyyOCR11 ocr4linux finereader cli that can perform batch operations or monitor a directory and launch an OCR conversion on file activity
Stars: ✭ 53 (+82.76%)
Mutual labels:  smb
View All Similar Projects ➔

python

shadowbroker-smb-scanner

Use shadowbroker SMBTOUCH tools to scan for vulnerable smb services so these machines can be identified and patched. Comes with x86 libraries. Target List option should be list of IPs separated by newline. This is based on SMBTOUCH from the shadowbroker dump.

!!!!!!! DANGER !!!!!!!

This is based on shadowborker dump. Who knows what hides in these binaries, use at your own risk and from VM ideally.

Version History

** v0.5a **

  • Added Wine detection using which command
  • Added single IP target

** v0.4a **

  • Added some error handling
  • Added authomatic wine handler if Linux detected
  • Added directory handling code depending on OS version
  • Changed verbose option
  • Added CTRL-C handler

** v0.3a **

  • Tested in Wine on Linux

Help

-=[ SMBTouch scanner (x86) v0.5a ]=-
                by op7ic

Usage: shadowbroker-smb-scanner.py [options]

Options:
  -h, --help            show this help message and exit
  -l TARGET_LIST, --list=TARGET_LIST
                        List of Target IPs separated by newline
  -d OUTPUT_DIR, --dir=OUTPUT_DIR
                        Output Directory
  -v, --verbose         Verbose debug mode
  -t SINGLE_TARGET, --target=SINGLE_TARGET
                        Single target IP to scan

Does it exploit anything?

Nope. This is just a scanner. Use it to find vulnerable boxes and patch them. It scans for following bugs:

ETERNALSYNERGY

ETERNALBLUE

ETERNALROMANCE

ETHERNALCHAMPION

How to compile it:

No need - just grab binaries and python wrapper around these. Binaries came from https://github.com/misterch0c/shadowbroker/tree/master/windows/lib/x86-Windows

How to use it:

See screenshots below for use examples. You need to use on Windows machine. Wine seems to work too (see below)

Run this on Wine (Linux)

wine python shadowbroker-smb-scanner.py -l target.txt -d /tmp/ -v

or use auto wine handling built into verion 0.4a and above

Run this on Windows

python shadowbroker-smb-scanner.py -l target.txt -d output/ -v

Help

Alt text

Verbose output

Alt text

Non-Verbose output

Alt text

MD5s

MD5 FileName Source
3c2fe2dbdf09cfa869344fdb53307cb2 coli-0.dll https://github.com/misterch0c/shadowbroker/tree/master/windows/lib/x86-Windows
ba629216db6cf7c0c720054b0c9a13f3 exma-1.dll https://github.com/misterch0c/shadowbroker/tree/master/windows/lib/x86-Windows
9a5cec05e9c158cbc51cdc972693363d libxml2.dll https://github.com/misterch0c/shadowbroker/tree/master/windows/lib/x86-Windows
2f0a52ce4f445c6e656ecebbcaceade5 posh-0.dll https://github.com/misterch0c/shadowbroker/tree/master/windows/lib/x86-Windows
b50fff074764b3a29a00b245e4d0c863 Smbtouch-1.1.1.exe https://github.com/misterch0c/shadowbroker/tree/master/windows/touches
2ff7cfa799216da77efd3f49c0b3b34a Smbtouch-1.1.1.xml https://github.com/misterch0c/shadowbroker/tree/master/windows/touches
0647dcd31c77d1ee6f8fac285104771a tibe-1.dll https://github.com/misterch0c/shadowbroker/tree/master/windows/lib/x86-Windows
f0881d5a7f75389deba3eff3f4df09ac tibe-2.dll https://github.com/misterch0c/shadowbroker/tree/master/windows/lib/x86-Windows
838ceb02081ac27de43da56bec20fc76 trch-1.dll https://github.com/misterch0c/shadowbroker/tree/master/windows/lib/x86-Windows
3e89c56056e5525bf4d9e52b28fbbca7 trfo-2.dll https://github.com/misterch0c/shadowbroker/tree/master/windows/lib/x86-Windows
83076104ae977d850d1e015704e5730a tucl-1.dll https://github.com/misterch0c/shadowbroker/tree/master/windows/lib/x86-Windows
6b7276e4aa7a1e50735d2f6923b40de4 ucl.dll https://github.com/misterch0c/shadowbroker/tree/master/windows/lib/x86-Windows

Issues:

This is a alpha version, use at your own risk.

  • Error handling is far from completed but it runs in the lab.
  • Checks for correct exploits are rather simple

TODO:

  • Improve error handling
  • Improve input handling
  • Work out if this works over IPv6
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].