Recently i got long list of linux machines and had to check which of them support password authentication.
I found a tool Hydra , if it finds machine which do not support password authentication, it will print it in output
Hydra v8.2-dev (c) 2016 by van Hauser/THC - Please do not use in military
or secret service organizations, or for illegal purposes. Hydra
(http://www.thc.org/thc-hydra) starting at 2019-11-25 14:49:59 [DATA]
max 4 tasks per 4 servers, overall 64 tasks, 5 login tries (l:1/p:5),
~0 tries
per task [DATA] attacking service ssh on port 22
[ERROR] target ssh://1.1.1.1:22/ does not support password authentication.
[ERROR] target ssh://2.2.2.2:22/ does not support password authentication.
ERROR] target ssh://3.3.3.3:22/ does not support password authentication.
[ERROR] target ssh://4.4.4.4:22/ does not support password authentication.
4 of 4 targets completed, 0 valid passwords found Hydra
(http://www.thc.org/thc-hydra) finished at 2019-11-25 14:50:01
So i created simple batch script which captures Hydra output into $command variable, then get string between [ERROR] target ssh:// and :22/ does not support into $out variable.
Then get IP address of masines – $filtered variable. Then print every IP into new line and write it to output.txt file.
Installing hydra (CentOS 7)
rpm -Uvh http://www6.atomicorp.com/channels/atomic/centos/7/x86_64/RPMS/atomic-release-1.0-21.art.noarch.rpm
yum install hydra
Put all your passwords to file pws.txt and machines IP into targets.txt
file: put every password/IP into new line
command=$((hydra -l root -P pws.txt -M targets.txt ssh -t 4) 2>&1)
echo $command
out=$(echo $command | grep -oP '(?<=ERROR] target ssh://).*(?=:22/ does not support)')
filtered=$(echo "$out" | sed 's|does not support password authentication.||g ; s|/||g ; s|ERROR||g ; s|target ssh||g ; s|:22||g ; s/[][]//g ; s|/||g ; s|:||g')
echo $filtered | xargs -n1 > output.txt
output.txt will contain IPs of machine which don’t support password authentication.
geekdudes 