Comments (7)
- find all related CVE's
- OpenSSH
- DropbearSSH
- go through ChangeLog for security issues, which doesn't have assigned CVE
- OpenSSH
- DropbearSSH
- double check with some security scanners to not miss anything
- extract banner components (protocol, software, comments)
- extract vendor/version from banner software component
- version comparison functionality
- OpenSSH
- DropBearSSH
- match against database
from ssh-audit.
Might be possible to use searchsploit for the CVE stuff. I use it here: https://github.com/blindfuzzy/LHF/blob/master/Modules/recon.py ; works out pretty well.
from ssh-audit.
Good tip, @blindfuzzy . As I don't want to rely on external modules/scripts/dependencies, I could use this for double-checking (as existing database). Also, maybe I could add it as optional dependency. Will have to research how useful it is when I'm done with historical CVE's.
P.S. LHF looks interesting.
from ssh-audit.
I understand. Thanks :D Hoping to continue making it better.
from ssh-audit.
Dropbear SSH CVE's: https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=dropbear
Correspond exactly to ChangeLog: https://matt.ucc.asn.au/dropbear/CHANGES
cve-search is missing CVE-2006-0225 (probably, due to being attributed to OpenSSH).
from ssh-audit.
Security sections for Dropbear SSH (already released) and libssh are done (release next week). Only OpenSSH is left as TODO.
from ssh-audit.
Perhaps a simple output of encountered SSH versions can be written to a file for a second script tool to interactively read then consult via-API to retrieve CVE?
from ssh-audit.
Related Issues (20)
- Bare ipv6 addresses don't work HOT 2
- Question about nistp256 etc HOT 3
- algorithm recommendations for OpenSSH 6.7 HOT 3
- `[exception] did not receive banner.` exception HOT 8
- Please do not import colorama on posix systems
- Feature request: detect SSHFP DNS records and compare with server fingerprint HOT 3
- SSH version 1 should be removed
- publish to pypi? HOT 1
- Add ProFTPd to known SSH softwares
- New algorithms HOT 3
- Recognize curve25519-sha256 in addition to [email protected] HOT 2
- feature-request : support options in any order
- No updates in 2 years ... is this project no longer active? HOT 17
- Add install / run instructions to README
- Add support for RFC 8308
- Add support for new quantum-resistant key exchange HOT 2
- Why is there a warning about encrypt-and-mac? HOT 5
- Add support for OpenSSH user configuration files HOT 2
- nada
- LC: 3JPD-XQXX-4FCQ-AB4C- MUMV-8E3F-8474-3QQL-Q2JX-6FKB-L4PH- DR97-BM26-BDHD-YQ5D-3JXY-DR7B-SAZH- GLQA-JNYV-AQPE-82WS
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ssh-audit.