From 783b520dc51ffd37b452bed2992c30642399306e Mon Sep 17 00:00:00 2001 From: peterpt Date: Sun, 10 Sep 2017 22:34:21 -0500 Subject: [PATCH 1/3] Chkip added --- README.md | 3 +++ chkip | 63 ++++++++++++++++++++++++++++++++++++++++++++++++++++++ mysmb.pyc | Bin 0 -> 16048 bytes 3 files changed, 66 insertions(+) create mode 100755 chkip create mode 100644 mysmb.pyc diff --git a/README.md b/README.md index 2cf1a42..394f931 100644 --- a/README.md +++ b/README.md @@ -24,7 +24,10 @@ This repository is for public my work on MS17-010. I have no plan to do any supp * **mysmb.py** Extended Impacket SMB class for easier to exploit MS17-010 bugs * **npp_control.py** PoC for controlling nonpaged pool allocation with session setup command * **zzz_exploit.py** Exploit for Windows 2000 and later (requires access to named pipe) + * **chkip** Check ip list for vulnerable ips . (it will create a file with the vulnerable ips) +** Usage : +* chkip myiplist.txt ## Anonymous user diff --git a/chkip b/chkip new file mode 100755 index 0000000..61a7a4a --- /dev/null +++ b/chkip @@ -0,0 +1,63 @@ +#!/bin/bash +green='\033[92m' +red='\e[1;31m' +yellow='\e[0;33m' +path=$(pwd) +lt=$1 +chkip() { +ping -c 1 $var > /dev/null 2>&1 +png="$?" + if [ $png == "0" ] +then +python checker.py $var > $lg +ipl=$path/iplist.txt +if [ -f $ipl ] +then +gtdata=$(cat $lg | grep "Ok") +if [[ -z $gtdata ]] +then +echo -e $red "IP $var not vulnerable" +else +echo -e $green "IP $var Vulnerable" +cp=$(cat $lg) +echo "" >> $ipl +echo $var >> $ipl +echo $cp >> $ipl +fi +else +gtdata=$(cat $lg | grep "Ok") +if [[ -z $gtdata ]] +then +echo -e $red "IP $var not vulnerable" +else +echo -e $green "IP $var Vulnerable" +cp=$(cat $lg) +echo "Vulnerable IPS to Eternal Blue & vulnerable services" > $ipl +echo "" >> $ipl +echo $var >> $ipl +echo $cp >> $ipl +fi +fi +else +echo -e $yellow "$var Not Online" +fi +} +if [ -z $lt ] +then +echo "you must input an ip list to check" +echo "" +echo "Example: chkip /myiplist.txt" +exit 1 +else +ips=$(cat "$lt" | wc -l) +echo "" +echo "Going to check $ips ips " +for i in $(seq "$ips") +do +lg=$path/log.txt +rm $lg >/dev/null 2>&1 +var=$(cat "$lt" | awk -v nb=$i 'NR==nb') +echo -e $green "checking ip $var" +chkip +done +fi \ No newline at end of file diff --git a/mysmb.pyc b/mysmb.pyc new file mode 100644 index 0000000000000000000000000000000000000000..7b97d8910cf647c321cacf1bc4fc944ea90cbdba GIT binary patch literal 16048 zcmeHO+ix7#c|WteTyc4oMM)GbS)ydiUdyp8(RI|glwyjcEG5!PIZHvXc(8A?m- zh2EK!rA7)`P(TwPXn{WTp#^$LFG$j+4eF#9v;~@?dFV?~p#MaG_Mt%gR1|1`zwetH zDN-#tACi+*v@3-&-gN`vC{yU~=Ov^FLj%nr0 za?Ut}=1enhS_QLQ(D%G)4wzQaEEn~?V4Azk@-CSH^+B^dXuJXQ$e87l@rR7>nAKt9 z6^&mq>v@dXC7=%#bVpxp7)lz(j5nNV7)ct&jlbJ?qvjEI{EYGU z#4C-Nb?kn^c;lwF*Lb^SEBlQ1j8yg;PkTJS}vkfMJ8VCc01kqj^{Ua112E1>j!@KuJ1Jl2^vD7y_&TkDC5nf zn+W{oih>9aCQ-cB?R3J|u2fH-dG*xkQ?Iq|<7g+>?uWx@yXA+KrD|9UdjY2nczokn zS?3t4)hp+hc+#32zv=@OUafoIy;keiT7KwvgE~j>AF*;CPw*lNAB+G>50Q-C2npta zq~jzENU{Qc$r)QM??Kma0>x4%tTmHK=R3W27!aqk7tfvw$KnnPwXmjb+~@2?Y1ud` z97jt6y1KFw_+hv&3tMOeYt35SZ~5&|(3{LEnB`kEj0E6oc7!m96-H#%rJ_%_l5|$!idGMW3i(LL3o`6$q zrdHkwUjP{Nsx0*@(L}Ql>=UR&1j|UV(#eCig`S0mg>D^+Xm$VtgzapkxlRWI0KFcZ zJ$6iKDFS?1D7lG*ijT`@Pi>|pxiOw^Mthwm1=A%mS=ItFg|%Rn|UkXZN!9XrqI0Zm`NDy$%h5n>W2f;#_gf_CRx%?oMpJ8GTC*D{jROT${tyNr1OR|W7S zB`pTeUF(Ie%;9pKH!(0c#NoLyXRLT2S9C_4!_FRO%$dw-ZC_3{S@XR4PODXGdkyn% z#?*OqJ_+M=@d8|g@X>N43N$MHIUETTBrmaLfX-LoAqjxl#irdwvc2CC;sqgBW{>Yz3_0Axd_s_a}TB~GmH zdZp9$?McjJY3hX*_5^FEQK;;Ypsg%H`#dZay$d4u*7R5|y>360gWg12K*2J(5wN^S z+m#!@e4Q}<@i}5ba3lvpi*Bwh4JQnuycw zlQj-zAo~S!h^C#LpNkJ5YwHfOrGMCX2h5{kvwWnFo>S6uT6$s|Kux?E&U4T_LV$TR zhHq*;B(2B#Smilc<@r8(9+sXjY_sAKS@HNbt<%y9v}6gq6_$9kqvp|wS$?U%&c~#4 zd7E{gmvvv>ru7ABJz>1#LcUiRaZ#U17%4tN0dEu-@e%$66LSoM3(3{#r+z}U2 zq!pk}D+n4z2f6S`M$PJ&Ssmwam3iB3< z-E(|}0TXb0Er1-{!3o2|PuVlrIMU#az)u&50Wnhz!;5VMS6 zc?}RE&1Hp{LvZYMS~5MWjVPvc5t@f?3!Uh6x@&hrccodo70ig;(pJvS{p;IG!?QDZ z(?|{>`aH4@YQ}IT+K(v4YqT4o>z26-D;9$*bp2K*^q~cVP%Kz_BKt`+_orO#0=nM8 z6EH3@P6ML1DLq$ed74dI1&P9eC`{ zpy_^^UI|nafzU(RDizfuKm%QsTn-)Fq67u#Sp{Q#GQse z+^aP!{;f{fsD-{b`1U+TiG*5GKs-_i<))EjovbWUN|(AlUwK)DddHYzJjscn6p(+5 zHu_5dsf+xu>YtA2mr*L&SYcwba_+rOm|hMooejGadzM@1t%R*4_%830v!NGH3@ z;%5oN)5oFSMXz7Q6RARb5cN9cCVseRa0&%Z^#JjfgHTNlr-DK~jgx`A2+Uxxi)MY7 zB=lpYO%Ad@#R5-s1}Yl~AtcIDo5OyvFvk=;E!B1? zRoV&~T6d+^Y~Fq&p3II=zb3OUw>w1szq+^d^ zE{*0G3L@+6sU8r*{Tv!C6s)mdVo_splf@3sizDf(V$Ub;gm5N?MNCOq47mbDA z7E}SpY{n+tqtw`82TN0BicphGFEpGIXn6szb{Kfs%Yb$kl0 z$u{lKt#^GGLq+r)Kq>D?njO2cO90yjSI(oTBNHas(%ZGJKUc3q2VTL&mMBFJw=kWc z!AmtwL}_y^xYHj-Y!eH73r|FV6a5oF_Wq#=0AKw(T$(n{?9?UxX^csoL)+pj=aJ&6 znLeaGvf;^hG4Ox4jZbq)9zYd3#Zw}bKKDYN;9k0 z7h+;zac9|(m*#@x5*-5vgg~fqh>%!g=>&$=cjm8Q!K7sh?&~ZS2;O+HiZGKFiNdI#fSL4_L}#R*+8zc-z3bQSqMo`(cA5)w$H2O1 zBXNqN1a6;%qk;(F!ni&*^=Ew9i^3p5Jeu3*>~?lDWsLf$Q>VJ7j!M+_KjB5G$Wpv- z*jc3g`KmrR@&ceJ$ssjfdC!6*@f)ui#P2|_DP#y{kr0U62Ehqv6GFwX5_$~LkBYL%`y|U7aB-~^PD`j zUIfcEfUv}Mczix}SmRTt(1p0PKK&iU5W*3pCQ|pe!rP5$G^Y0nawn-*3BqQQxlo>B zY^(gU2ep`guG>pXi|$-y;R_)z^#GQ|=a_s>6UT1#Hr;CW5LZkn+pWDXzG|efQ#)rL zqF?I82rDt~Fb%N%42!o}P$kLP-sf?-VxPRlw1L-gWti9r7h4fm{)cFZvI=A}vKW8% zI%Q`pcf_ev{Sce{JX4QBCPR>38REt-p!HQA1X_sjhY8-NL?Y> zg^RJjk$Flo4?3a8F6}X7x;aPRkwKZ__J{e^%hkM0Fe=_SW&#hR9FH^X;chli#*ii( zHlQk{VUKx$-NU7H9@;;+nDYsst zzt3G%HEzli7^5NYW!CT*&Evnwny5i)dAA21Vx~u!hHi>j5=#>!jObPyx7zr|r0XxX zYd4#|r|eFyy>NN%?dpt6uCFf6zXPVf;Z`rbU71^Y$1bW$#8@}4C8Mjtbp|SxF%lfv|*o!1$_Eo`CFt!<&IiSFap`I{(GBv-+m=-mUEnzo>HBW z3A_G#{RxEq8YcQ@Ji#;y>ez8yzl|cp!Dk3*wISzNu7s`izJ~QNUggFc%NJTDn|c^Geo9*6m=T=L^5$5B%B>fCgMxo zS9J3V{i{u%WXeI+IfMp63x_jm`kXW&4*|}WWH8t`YFeSH2fMRBVN`(XEZ{zc_6HY{QWN`wvGE(l8lFMaM$v|A5WP{Dp-rN<$Tmf9uuaJA$8AHf zRPoVb7_OQLlQYGz5zGi!GzV-H7#eTD3AN0KS;yCPs#^$!4#Pe6Frn2lQLa`=zL$^> zB}A5RwV0@X@lM1M0FbL?xaS6p6pYFWvB>S@9*!itASxbk|{R!C)M$ z!ZL$bksVb4skx$hh|SfKovT#m=9eyAt%yhhE?FP_a4ci7>~T&F6C+|z(T|=IewUC{Ppx2V3-`hzPB?XvFP6G_&N7EW)c{K{l<*!|D9+-L z!@<_zP~jl57XC+m4jigfVTdB6j9Xs!s6)WTgbwzbtbL2cGz)PFzRlVnviKtw-(m5` zED~QqP}V25hA>i`6v5R1bV(GzopFRq>m_txr$pcUIbODKI!g@iaWE-U zW+_%dqkQWJPGnFGrBN|96|czclV~C%UbK@}D+_b>hJ2r=l9>t>ai_%m3~MB&=nWC7 z?3au}VmKIZ*`PT#v}~m8PK1Gb-XIJ}lSZG6YO19~itj})0}&X71IQmbf@3+bK8YVQ zfUy2+0QAH9NMvkb8Lcq-_b^9l_LZrL7W=0xrdfQzV&kd%}qlb4Qt=w`}T4y5LHAUt{fU7R+6KxlTm*V^J+OEIA);@mQ#WYYV z>ocztO9jEw8C6|Bv0K1~d}OzkAY=>|KUMC-a6MT=?}XFo&u!%NL{mpRe}>egKzw|L z>94TZM`oCa;taE2Y@u}pA>kK&@>PHIVT7rjNnUGx?OchMVzJNU-Y8*EYX`Z%9Vc>5JYN1j6M*#zr0S(ZmsiCk`lF#^ET)t4anras+8{(wHt| ziV|xhnY;_Vw*1YF?Zfm;V9HqHDobwcEQY)u27JR8|67|LGJ%F-bXiy8wZBQQ_)62P ziAVWu)}9^@>_j@5H;kkc_e|L+>TNRXNi_EpMX42%7>bM?Gq*UB3jp-vNYaImV<>nq z>-hiVFzN@GSWOYvQ_uTvS^E&U>(lpS+$JI(BkfDXmRh7Ye`1lgj-)d3kugZjw0*1w zX&MV|X8Fw~3CeC8lf*Ou<0L+GI{wdMrN75yADKxak~i>cYLwP^)W|61(T&+^{+5Ha zQ2{P+DR>WmJODY?BwLQ(Ds~$p)_OI7aJ<0G{uGop)A47`dzqXe+w?Cl`4=v{IDq0t z6h_#9IdTT`qx*G0qsu}0yvF_tR@a+BRP;tiujCl(isYwxG5G{OjlLyu+-kIOBc#zb z^Ul21yN3Ha$|?S^bFEKdr#@VP7yKn2og(0XVTf9tCT+hVCE0X zKF3!oLVJyYSJ?te7`f}e zaOv`*TfI1E7hStJw;=h23`}mdKmJA!-@lGqz`6DSzVG6NSU0hm+s0PQ6+|BO?wGd_iP{r+;0wU=3(Kp}tb3bP;G z3ug^}iG9dPRutYpvUZ$9$e6f7kUyPyh0v2M_zj7E4MsT>RO|qCa>iNxE7Wro=73)K de%>*IOGomh+(dqA3_s%|&+Y-wmPSg0{{z~w> Date: Sun, 10 Sep 2017 23:34:20 -0500 Subject: [PATCH 2/3] script adjustments --- chkip | 19 ++++++++++++------- 1 file changed, 12 insertions(+), 7 deletions(-) diff --git a/chkip b/chkip index 61a7a4a..e25ef07 100755 --- a/chkip +++ b/chkip @@ -5,12 +5,19 @@ yellow='\e[0;33m' path=$(pwd) lt=$1 chkip() { -ping -c 1 $var > /dev/null 2>&1 -png="$?" - if [ $png == "0" ] -then -python checker.py $var > $lg +python checker.py $var > $lg 2>&1 + +# ip file to be created in current path with vulnerable ips ipl=$path/iplist.txt + +# Check from output if connection to ip had a timeout +gtdata=$(cat $lg | grep "timeout") +if [[ ! -z $gtdata ]] +then +echo -e $yellow "Connection to $var Time Out" +else + +# timeout was not recieved , so check if ip is vulnerable if [ -f $ipl ] then gtdata=$(cat $lg | grep "Ok") @@ -38,8 +45,6 @@ echo $var >> $ipl echo $cp >> $ipl fi fi -else -echo -e $yellow "$var Not Online" fi } if [ -z $lt ] From 0595d6ce0e02dc7ecdb2dd62ad5931de15fa6628 Mon Sep 17 00:00:00 2001 From: peterpt Date: Thu, 14 Sep 2017 15:16:41 +0100 Subject: [PATCH 3/3] Create requirements --- requirements | 4 ++++ 1 file changed, 4 insertions(+) create mode 100644 requirements diff --git a/requirements b/requirements new file mode 100644 index 0000000..ce29b73 --- /dev/null +++ b/requirements @@ -0,0 +1,4 @@ +* Required libraries : +python-impacket +python-crypto +python-pyasn1-modules