elie/ssh-audit

mirror of https://github.com/jtesta/ssh-audit.git synced 2025-11-04 03:02:15 +01:00

Go to file

Andris Raugulis 926b78889e Add write buffer, implement ssh packet sending. Use shared block size.

2016-04-01 18:30:54 +03:00

.gitignore

Init project.

2015-12-23 04:56:13 +02:00

README.md

Update ChangeLog.

2016-03-07 13:01:57 +02:00

ssh-audit.py

Add write buffer, implement ssh packet sending. Use shared block size.

2016-04-01 18:30:54 +03:00

README.md

ssh-audit

ssh-audit is a tool for ssh server auditing.

Features

grab banner, detect ssh1 protocol and zlib compression;
gather key-exchange, host-key, encryption and message authentication code algorithms;
output algorithm information (available since, removed/disabled, unsafe/weak/legacy, etc);
historical information from OpenSSH and Dropbear SSH;
no dependencies, compatible with python2 and python3;

Usage

usage: ssh-audit.py [-nv] host[:port]

   -v  verbose
   -n  disable colors

Verbose flag will fill each row, i.e, not leave blanks, for easier usage with batch scripts or with manual grepping.

example

ChangeLog

v1.0.20160207

use OpenSSH 7.2 banner
additional warnings for OpenSSH 7.2
fix OpenSSH 7.0 failure messages
add rijndael-cbc failure message from OpenSSH 6.7

v1.0.20160105

multiple additional warnings
support for none algorithm
better compression handling
ensure reading enough data (fixes few Linux SSH)

v1.0.20151230

Dropbear SSH support

v1.0.20151223

initial version

Languages

Python 90.8%

Shell 6.5%

Roff 1.9%

Batchfile 0.6%

Dockerfile 0.2%