mirror of https://github.com/OWASP/Nettacker.git
41 lines
820 B
YAML
41 lines
820 B
YAML
info:
|
|
name: smtp_brute
|
|
author: OWASP Nettacker Team
|
|
severity: 3
|
|
description: SMTP Bruteforcer
|
|
reference:
|
|
profiles:
|
|
- brute
|
|
- smtp
|
|
|
|
payloads:
|
|
- library: smtp
|
|
steps:
|
|
- method: brute_force
|
|
timeout: 3
|
|
host: "{target}"
|
|
ports:
|
|
- 25
|
|
- 2525
|
|
usernames:
|
|
- root
|
|
- admin
|
|
- user
|
|
- test
|
|
passwords:
|
|
nettacker_fuzzer:
|
|
input_format: '{{passwords}}'
|
|
prefix:
|
|
suffix:
|
|
interceptors:
|
|
data:
|
|
passwords:
|
|
read_from_file: passwords/top_1000_common_passwords.txt
|
|
response:
|
|
condition_type: or
|
|
conditions:
|
|
successful_login:
|
|
regex: ""
|
|
reverse: false
|
|
|