elie/ssh-audit
1
0
Fork 0
mirror of https://github.com/jtesta/ssh-audit.git synced 2025-01-24 13:15:37 +01:00
Code Issues Packages Projects Releases Wiki Activity
20 Commits 1 Branch 16 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Andris Raugulis b074d4a3ce Create thinner screenshot.
2016-01-05 18:13:46 +02:00
.gitignore
Init project.
2015-12-23 04:56:13 +02:00
README.md
Create thinner screenshot.
2016-01-05 18:13:46 +02:00
ssh-audit.py
Add warnings for encryption and MAC.
2016-01-05 18:02:05 +02:00

README.md

ssh-audit

ssh-audit is a tool for ssh server auditing.

Features

  • grab banner, detect ssh1 protocol and zlib compression;
  • gather key-exchange, host-key, encryption and message authentication code algorithms;
  • output algorithm information (available since, removed/disabled, unsafe/weak/legacy, etc);
  • historical information from OpenSSH and Dropbear SSH;
  • no dependencies, compatible with python2 and python3;

Usage

usage: ssh-audit.py [-nv] host[:port]

   -v  verbose
   -n  disable colors

Verbose flag will fill each row, i.e, not leave blanks, for easier usage with batch scripts or with manual grepping.

example

screenshot

ChangeLog

v1.0.20160105

  • multiple additional warnings
  • support for none algorithm
  • better compression handling
  • ensure reading enough data (fixes few Linux SSH)

v1.0.20151230

  • Dropbear SSH support

v1.0.20151223

  • initial version
Description
SSH server & client security auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
auditingsecurityssh
Readme MIT 4.9 MiB
Languages
Python 90.1%
Shell 7.1%
Roff 2%
Batchfile 0.6%
Dockerfile 0.2%