changeme
changeme is a default credential scanner that detects common default credentials missed by commercial vulnerability scanners. It allows easy addition of new credentials via yaml files without writing code.
Description
Commercial vulnerability scanners often miss common default credentials, and adding them is difficult and slow. changeme addresses this by providing a simple tool to scan for default credentials across various protocols. It keeps credential data separate from code, storing all credentials in human-readable yaml files that can be easily created or modified.
Use cases include scanning networks, hosts, or services for weak default credentials during penetration testing or security assessments. It supports targets like IPs, subnets, hostnames, nmap xml files, or protocol-specific endpoints, making it versatile for different scanning scenarios.
The tool is designed for simplicity, with features like credential file creation via a guided tool and dumping available credentials for review.
How It Works
changeme scans targets for default credentials using yaml-stored credential pairs, supporting http/https, MSSQL, MySQL, Postgres, ssh, and ssh w/key protocols. It processes targets specified as IP, subnet, hostname, nmap xml file, text file, or proto://host:port. Credentials are kept separate from code for easy maintenance; new ones can be added with ./changeme.py --mkcred by answering questions. Use ./changeme.py --dump to list all available credentials.
Installation
sudo apt install changemeFlags
Examples
changeme -h./changeme.py --mkcred./changeme.py --dumpchangeme 192.168.1.1changeme 192.168.1.0/24changeme example.comchangeme nmap_output.xmlchangeme http://target:8080