nullinux v5.4.1 releases: SMB null session identification and enumeration tool

by do son · Published · Updated

nullinux

nullinux is an internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB null sessions. Unlike many of the enumeration tools out there already, nullinux can enumerate multiple targets at once and when finished, creates a users.txt file of all users found on the host(s). This file is formatted for direct implementation and further exploitation. This program assumes Python 2.7, and the Samba package are installed on the machine.

Feature

  • Target multiple hosts at once.
  • Port scan target(s) in order to verify open SMB ports.
  • Quickly fingerprint a network looking for vulnerabilities such as outdated operating systems or versions.
  • Attain directory listings of shares statically set by the user and dynamically enumerated for each host.
  • Create a nulllinux_users.txt file of all user accounts found for further exploitation.
  • Provide clear concise output for end users.

Changelog

v5.4.1

  • Python 2.7/3 compatibility
  • Ipparser for multi-target inputs
  • Custom output filename (thanks to @SilentVoid13)
  • Multi-threaded RID Cycling

Download

git clone https://github.com/m8r0wn/nullinux

Usage

                 nullinux | v4.0

         SMB Null Session Enumeration Tool



Scanning:

    -shares             Dynamically Enumerate all possible

                        shares. (formally: --enumshares)



    -users              Enumerate users through a variety of

                        techniques. (formally: --enumusers)



    -quick              Quickly enumerate users, leaving out brute

                        force options. (used with: -users, or -all)



    -all                Enumerate both users and shares

                        (formally: --all)



Host:

    -U                  Set username (optional)

    -P                  Set password (optional)



More Options:

    -v                  Verbose Output

    -h                  Help menu



Example Usage:

    python nullinux.py -users -quick DC1.Domain.net

    python nullinux.py -all 192.168.0.0-5

    python nullinux.py -shares -U 'Domain\User' -P 'Password1' 10.0.0.1,10.0.0.5

    python nullinux.py 10.0.0.0/24

 

 

Example

python nullinux.py -users -quick DC1.Domain.net
python nullinux.py -all 192.168.0.0-5
python nullinux.py -shares -U 'Domain\User' -P 'Password1' 10.0.0.1,10.0.0.5

Demo

Copyright (c) 2018 m8r0wn

Source: https://github.com/m8r0wn/

Tags: nullinuxSMB null session