It's very important to check code before using. Kind of reverse engineering
1. This is backdoor (if we can call this backdoor), not brutal force tool
2. You need some coding skills to edit this script
What you need to replace:https://github.com/joridos/custom-ssh-backdoor/blob/master/server.py
Replace path for key to match your system:
host_key = paramiko.RSAKey(filename='/home/joridos/custom-ssh-backdoor/test_rsa.key')
Replace user name password with one you will use:
if (username == 'joridos') and (password == 'olh234'):
Replace rsa key in :https://github.com/joridos/custom-ssh-backdoor/blob/master/test_rsa.key
With your key.
On both files server.py and client.py you need to edit server IP as well to match them with real life IP's.
This tool use same system as ansible, server administration tool, and it's nothing new. You need first exploited ssh server then you can use this to have open ports for login. Key is used for server login, and user and password is to protect other people to use your lol, backdoor.
For me this is not hacking tool, this is sys administration tool with sexy usage/name. This tool don't have any sign of backoor, you can use it after editing code on your side, if not you will open door for this dude and his log in credentials