ssh-audit

elie/ssh-audit

Fork 0

mirror of https://github.com/jtesta/ssh-audit.git synced 2024-11-16 13:35:39 +01:00

Commit Graph

Select branches

Hide Pull Requests

master

#101

#104

#105

#113

#116

#12

#123

#125

#126

#131

#134

#135

#142

#150

#157

#158

#160

#162

#171

#182

#185

#187

#194

#196

#20

#212

#215

#218

#233

#242

#244

#249

#252

#259

#259

#264

#264

#266

#267

#271

#276

#277

#278

#281

#285

#286

#287

#289

#29

#302

#303

#304

#35

#37

#38

#39

#40

#43

#44

#45

#48

#50

#53

#58

#62

#68

#69

#71

#80

#84

#85

#88

#92

#93

#95

#99

v1.5.0

v1.6.0

v1.7.0

v2.0.0

v2.1.0

v2.1.1

v2.2.0

v2.3.0

v2.3.1

v2.4.0

v2.5.0

v2.9.0

v3.0.0

v3.1.0

v3.2.0

v3.3.0

b1a0b9d85b Argparse v3 - RC1 OAM7575 2024-10-26 12:10:26 +1100
c5f4ae74ce Argparse v3 - RC1 OAM7575 2024-10-20 10:31:30 +1100
feff4eea4c Merge branch 'argparse_v2' of github.com:oam7575/ssh-audit into argparse_v2 OAM7575 2024-10-20 10:26:48 +1100
d2dc807489 ARGPARSE : Draft 2 - most arguments tested, limited GEX Testing. OAM7575 2024-10-19 21:14:49 +1100
86d307240f Condense Argparse OAM7575 2024-10-20 10:17:31 +1100
c53499fc8f ARGPARSE v2 - RC2 OAM7575 2024-10-20 08:20:20 +1100
1d55e2629e ARGPARSE v2 - RC1 OAM7575 2024-10-20 07:54:50 +1100
a0fb1c7570 aconf.client is None OAM7575 2024-10-19 22:59:26 +1100
5c264bd2cf ARGPARSE : json indent OAM7575 2024-10-19 22:30:45 +1100
d783ab00c5 ARGPARSE : forgot --json-indent switch. OAM7575 2024-10-19 22:24:14 +1100
aab66c4609 ARGPARSER OAM7575 2024-10-19 22:18:23 +1100
32e0ed9cc3 ARGPARSER release candidate 1 OAM7575 2024-10-19 22:15:23 +1100
2743559488 ARGPARSE : Draft 4 - had to roll back OAM7575 2024-10-19 22:01:28 +1100
517d29f011 ARGPARS : Draft 3 OAM7575 2024-10-19 21:54:31 +1100
268ec689c0 ARGPARSE : Draft 2 - most arguments tested, limited GEX Testing. OAM7575 2024-10-19 21:14:49 +1100
67cc9c2ef0 ARGPARSER : Draft 1 - minimum viable testing OAM7575 2024-10-19 16:30:59 +1100
99c64787d9 Updated description of -m option. master Joe Testa 2024-10-16 16:39:11 -0400
3fa62c3ac5 Fixed man page parsing error. (#301) Joe Testa 2024-10-16 16:23:20 -0400
d7fff591fa Bumped version to v3.4.0-dev. Joe Testa 2024-10-15 18:30:08 -0400
84647ecb32 Updated packaging notes. Joe Testa 2024-10-15 18:29:25 -0400
772204ce8b Bumped version to v3.3.0. v3.3.0 Joe Testa 2024-10-15 13:28:38 -0400
c0133a8d5f Listing built-in policies will now hide older versions, unless -v is used. Joe Testa 2024-10-11 15:43:09 -0400
3220043aaf Added note regarding hardening instructions. Joe Testa 2024-10-10 16:10:52 -0400
40ed92bbe6 Run tests against stable version of Python 3.13. Joe Testa 2024-10-10 16:06:18 -0400
720150b471 Issue a warning if an out-dated policy is used. Joe Testa 2024-10-10 15:57:29 -0400
d0628f6eb4 Updated ext-info-c and ext-info-s key exchanges to include versions of OpenSSH they were first included in. (#291) Joe Testa 2024-10-07 17:41:39 -0400
1e060a94c0 Updated built-in server and client policies for Amazon Linux 2023. Joe Testa 2024-10-01 18:15:02 -0400
8563c2925b Updated built-in client policy for Debian 12. Joe Testa 2024-10-01 17:48:49 -0400
556306be5e Updated built-in client policy for Rocky Linux 9. Joe Testa 2024-10-01 17:39:42 -0400
7ab6d20454 Updated built-in client policy for Ubuntu 22.04. Joe Testa 2024-10-01 17:32:49 -0400
1f1a51d591 Updated Ubuntu 22.04 built-in policy. Joe Testa 2024-10-01 17:06:03 -0400
77a63de133 Updated Rocky Linux 9 built-in policy. Joe Testa 2024-10-01 16:21:23 -0400
cffa126277 Updated Debian 12 built-in policy. (#283) Joe Testa 2024-10-01 15:01:44 -0400
dc615cef7f Fixed DH rate testing on Windows. (#261) Joe Testa 2024-09-28 18:39:55 -0400
cb6142c609 Ignore mypy errors on colorama import. Joe Testa 2024-09-28 17:43:32 -0400
629008e55e Updated test commands. Joe Testa 2024-09-26 18:34:40 -0400
016a5d89f7 Updated Github Actions workflow to use Tox through pip instead of the platform version. Joe Testa 2024-09-26 18:31:21 -0400
93b30b4258 Removed version-based CVE information. (#240) Joe Testa 2024-09-26 13:15:58 -0400
3b8a75e407 Server kex/host key parsing failures no longer output a stack trace unless in debug mode. Joe Testa 2024-09-25 17:34:18 -0400
67e11f82b3 Updated --targets description. Joe Testa 2024-09-25 17:12:16 -0400
2cd96f1785 Ensure ECDSA and DSS fingerprints are only output in verbose mode. Clean up Docker tests from merge of #286. Joe Testa 2024-09-25 17:05:17 -0400
a4b78b752e

Enable HostKeyTest to extract ECDSA and DSA keys (#286) Daniel Lenski 2024-09-25 13:57:03 -0700
ac540c8b5f

Created FUNDING.yml. Joe Testa 2024-09-25 16:20:45 -0400
e11492b7a3 Updated shields. Joe Testa 2024-09-25 16:07:01 -0400
02bc48c574 Bumped supported Python range. Joe Testa 2024-09-25 14:18:41 -0400
24d7d46c42 Updated PyPI downloads shield. Joe Testa 2024-09-25 10:05:35 -0400
e97bbd9782 Added Python 3.13 support. Joe Testa 2024-09-24 18:20:07 -0400
6d57c7c0f7 The -p/--port option will now set the default port for multi-host scans (specified with -T/--targets). (#294) Joe Testa 2024-09-24 16:42:53 -0400
ea3258151e Fixed invalid JSON output when a socket error occurs while performing a client audit. (#295) Joe Testa 2024-09-24 15:48:14 -0400
f9032c8277 Added built-in policy for OpenSSH 9.9. Joe Testa 2024-09-24 15:05:05 -0400
5f183d7f77

Merge b2e621cafc into d7398baad7 Bandit Pingu 2024-09-20 14:37:31 +0300
d7398baad7 Added two new key exchanges: mlkem768x25519-sha256, sntrup761x25519-sha512. Joe Testa 2024-09-19 17:40:49 -0400
4621d52223 Updated unknown algorithm message. Joe Testa 2024-09-19 17:01:37 -0400
2a7cb13895 Added grasshopper-ctr128 cipher. Joe Testa 2024-09-18 17:59:45 -0400
06ebdbd0fe Updated README. Joe Testa 2024-08-26 16:46:34 -0400
7752023dc2

Switch connect_ex result checks to use errno lookups (#289) Drew Noel 2024-08-26 16:38:44 -0400
a6f02ae8e8 Added debugging output for key exchanges. Joe Testa 2024-08-26 16:25:32 -0400
e83c466a33 Return errno strings, clean up comment Drew Noel 2024-08-15 09:20:22 -0400
1297d284e9 Switch connect_ex result checks to errno lookups Drew Noel 2024-07-22 12:54:13 -0400
b6fdfc4ab1

Delete CONTRIBUTING.md patriciakid 2024-07-18 12:13:53 -0400
574a53d88e Enable HostKeyTest to extract ECDSA and DSA keys Daniel Lenski 2024-07-01 17:30:53 -0700
1fda590371

fix for issue https://github.com/jtesta/ssh-audit/issues/284 dreizehnutters 2024-07-07 20:33:41 +0200
9049c8476a Updated README. Joe Testa 2024-07-06 21:01:19 -0400
bbbdf71e50

Recognize LANcom LCOS software and support ed448 key extraction (#277) Daniel Lenski 2024-07-06 17:56:24 -0700
c9769b3609 Recognize LANcom LCOS software and support extraction of ssh-ed448 key type Daniel Lenski 2024-06-28 17:29:35 -0700
92db5f0138 Updated docker tests and README due to merge of PR #281. Joe Testa 2024-07-05 10:53:00 -0400
bc2a89eb11

fix for https://github.com/jtesta/ssh-audit/issues/280 (#281) dreizehnutters 2024-07-05 16:49:16 +0200
6597ca0bad

changed json format to min. the damage for a change dreizehnutters 2024-07-05 16:36:38 +0200
ea117b203b Updated README. Joe Testa 2024-07-05 10:16:06 -0400
d8f8b7c57c

Make HostKeyTest class reusable (#278) Daniel Lenski 2024-07-05 07:11:18 -0700
f29ef398ca

fix for https://github.com/jtesta/ssh-audit/issues/280 dreizehnutters 2024-07-03 12:22:23 +0200
cfd8600867

Merge branch 'jtesta:master' into master dreizehnutters 2024-07-03 12:16:27 +0200
4c8d56dd06

fix for https://github.com/jtesta/ssh-audit/issues/280 dreizehnutters 2024-07-03 12:14:27 +0200
e42961fa9a Added built-in policy for OpenSSH 9.8. Joe Testa 2024-07-02 21:31:36 -0400
dcbc43acdf Fixed crash when running with '-P' and '-T' options simultaneously. (#273) Joe Testa 2024-07-02 20:56:11 -0400
d1b75ac677 Make HostKeyTest class reusable Daniel Lenski 2024-07-01 17:15:46 -0700
87e22ae26b Added IPv6 support for DHEat and connection rate tests. (#269) Joe Testa 2024-06-29 19:05:20 -0400
df8f238152 Include raw hostkey bytes in debug output Daniel Lenski 2024-06-28 17:32:18 -0700
066dcf4899

fix for https://github.com/jtesta/ssh-audit/issues/275 dreizehnutters 2024-06-22 17:38:08 +0200
e3e3657f2b

fix: Add space to fix URLs in terminal 0x08 2024-05-23 15:09:45 +0200
3116c2e678

Update versionvulnerabilitydb.py Manfred Kaiser 2024-05-09 16:50:44 +0200
470b59b4b3 updated verion vulnerability db Manfred Kaiser 2024-05-09 16:44:28 +0200
ed6cae0171

Merge branch 'jtesta:master' into master Manfred Kaiser 2024-05-07 00:27:03 -0700
b2e621cafc Modified OutputBuffer to have an error function to output to stderr. Change .fail with errors to .error FlyingFish 2024-05-01 23:00:25 +0100
46ec4e3edc Added built-in policies for Ubuntu 24.04 LTS server and client. Joe Testa 2024-04-29 19:11:47 -0400
d19b154a46 Bumped version to v3.3.0-dev. Joe Testa 2024-04-22 17:57:26 -0400
c5d90106e8 Updated docker run command. Joe Testa 2024-04-22 17:54:37 -0400
68cf05d0ff Set version to 3.2.0 for release. v3.2.0 Joe Testa 2024-04-22 16:32:57 -0400
2d9ddabcad Updated DHEat rate connection warning message. Joe Testa 2024-04-22 16:26:03 -0400
986f83653d Added multi-line real-time output for connection rate testing. Joe Testa 2024-04-22 13:56:50 -0400
3c459f1428 Revised connection rate warning during standard audits. Joe Testa 2024-04-22 11:58:52 -0400
46b89fff2e Sockets now time out after 30 seconds during connection rate testing. Joe Testa 2024-04-21 17:05:57 -0400
81718d1948 Fixed non-interactive connection rate tests. Revised warning for lack of connection throttling. Joe Testa 2024-04-21 15:08:38 -0400
8124c8e443 Added aes128-ocb@libassh.org cipher. Joe Testa 2024-04-18 21:09:02 -0400
b9f569fdf8 Added warnings for Windows platform. Joe Testa 2024-04-18 20:51:14 -0400
9126ae7d9c Improved DHEat statistics output. Joe Testa 2024-04-18 20:01:28 -0400
d2f1a295a1 Removed vulture from Tox (it rarely made any findings, and when it did, pylint reported the same issues). Joe Testa 2024-04-18 19:36:13 -0400
8190fe59d0 Added implementation for DHEat denial-of-service attack (CVE-2002-20001). (#211, #217) Joe Testa 2024-04-18 13:58:13 -0400
dc447c1ee2

Merge 3515593ade into d7f8bf3e6d oam7575 2024-03-24 08:23:49 +0000
3515593ade Merge branch 'master' of github.com:jtesta/ssh-audit into strong_crypto_only OAM7575 2024-03-24 19:21:50 +1100