BlitzSSH is a powerful and efficient SSH login brute-force testing tool. It allows security professionals to test SSH credentials from an input file and identify valid login combinations.
It supports multiple credential formats, making it versatile for different list structures.
- Supports various credential formats:
hostname:username:passwordhostname:port:username:passwordhostname;user;passworduser:password:hostname:portuser;password;hostnameuser:port:password:hostname
- Multi-threaded execution for faster results
- Automatic logging of valid and invalid SSH credentials
- Telegram integration for real-time notifications of successful logins
- Beautifully formatted output using
richandpystyle
Ensure you have the following Python packages installed:
pip install paramiko python-telegram-bot rich pystyle- Clone the repository:
git clone https://github.com/HackfutSec/BlitzSSH.git
cd BlitzSSH- Edit the script to add your Telegram bot token and chat ID:
TELEGRAM_BOT_TOKEN = "your_bot_token"
TELEGRAM_CHAT_ID = "your_chat_id"- Run the script:
python blitzssh.py- Enter the path to your credential list when prompted.
- Good_Ssh.txt: Contains valid SSH credentials
- Bad_Ssh.txt: Contains invalid login attempts
- Successful logins are sent to Telegram if configured
- Do not use this tool for unauthorized access. It is intended for security research and penetration testing only.
- Ensure you have permission before testing any systems.
BlitzSSH is provided for educational purposes. The authors are not responsible for any misuse of this tool.
HackFutSec - Ethical Hacking & Security Research