{"id": "KITPLOIT:7116374401560623508", "bulletinFamily": "tools", "title": "BruteSpray - Brute-Forcing from Nmap output (Automatically attempts default creds on found services)", "description": "[  ](<https://1.bp.blogspot.com/-YImdzArY6_A/WRpFZ9xpmPI/AAAAAAAAHww/1PTdS42TwRMrkiiaxO7jGPu5M0qWsZe_ACLcB/s1600/brutespray.png>)\n\n \n\n\nBruteSpray takes nmap GNMAP output and automatically brute-forces services with default credentials using Medusa. BruteSpray can even find non-standard ports by using the -sV inside Nmap. \n\n \n** Usage ** \nFirst do an nmap scan with '-oA nmap.gnmap'. \nCommand: python brutespray.py -h \nExample: python brutespray.py --file nmap.gnmap --services all --threads 3 --hosts 5 \n \n** Supported Services ** \n\n\n * ssh \n * ftp \n * telnet \n * vnc \n * mssql \n * mysql \n * postgresql \n * rsh \n * imap \n * nntp \n * pcanywhere \n * pop3 \n * rexec \n * rlogin \n * smbnt \n * smtp \n * snmp \n * svn \n * vmauthd \n \n\n\n** [ Download BruteSpray ](<https://github.com/x90skysn3k/brutespray>) **\n", "published": "2017-05-16T15:13:09", "modified": "2017-05-16T15:13:09", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://www.kitploit.com/2017/05/brutespray-brute-forcing-from-nmap.html", "reporter": "KitPloit", "references": ["https://github.com/x90skysn3k/brutespray"], "cvelist": [], "type": "kitploit", "lastseen": "2020-12-08T23:26:34", "edition": 31, "viewCount": 1, "enchantments": {"dependencies": {"references": [], "modified": "2020-12-08T23:26:34", "rev": 2}, "score": {"value": 1.0, "vector": "NONE", "modified": "2020-12-08T23:26:34", "rev": 2}, "vulnersScore": 1.0}, "toolHref": "https://github.com/x90skysn3k/brutespray", "scheme": null}

{}