GoSpray - Simple Network Brute-Force Tool 🚀
GoSpray is a tool designed for brute-forcing (spraying) different network protocols. It also supports task restoration (-restore), so you can continue an interrupted session.
Supported Protocols:
RDP
SSH
FTP
Windows LDAP
Windows Kerberos
HTTP Basic & Digest Authentication
Quick Start
Run a brute-force attack on FTP:
go run . -ul usernames.txt -pl passwords.txt -p ftp -tl targets.txt -w 10
✅ Example Success Output:
192.168.56.102:user:123
If interrupted, restore progress:
go run . -restore
✅ Restored Output: user:123
Command-Line Options
-ul → Path to the usernames file
-pl → Path to the passwords file
-p → Protocol to target (rdp, ssh, ftp, winldap, kerberos, httpbasic, httpdigest)
-tl → Path to the targets file (one target per line)
-w → Number of workers (threads)
-debug → Run in debug mode (currently supports httpbasic)
-restore → Resume a previous session using "progress.gob"
Target Formats
SSH, RDP, LDAP, FTP: 192.168.56.102 or 192.168.56.102:21
HTTP Basic/Digest:
Windows Kerberos: test.local:88
Example Usage
Brute-force SSH:
spray.exe -ul usernames.txt -pl passwords.txt -p ssh -tl targets.txt -w 10
Spray HTTP Basic Authentication:
spray.exe -ul usernames.txt -pl passwords.txt -p httpbasic -tl targets.txt -w 10 -ru -rp
Restore a previous session:
spray.exe -restore
⚠ Disclaimer: This tool is for educational and authorized security testing only. Unauthorized use may be illegal. Always get explicit permission before testing.
Stay ethical, stay safe! 😎
drcrypter or drcrypter_ru