ssh-audit/README.md

35 lines
1.0 KiB
Markdown
Raw Normal View History

2015-12-22 21:56:13 -05:00
# ssh-audit
2015-12-22 22:52:21 -05:00
**ssh-audit** is a tool for ssh server auditing.
## Features
- grab banner, detect ssh1 protocol and zlib compression;
- gather key-exchange, host-key, encryption and message authentication code algorithms;
- output algorithm information (available since, removed/disabled, unsafe/weak/legacy, etc);
2015-12-30 06:17:58 -05:00
- historical information from OpenSSH and Dropbear SSH;
2015-12-30 10:01:11 -05:00
- no dependencies, compatible with python2 and python3;
2015-12-22 22:52:21 -05:00
## Usage
```
usage: ssh-audit.py [-nv] host[:port]
-v verbose
-n disable colors
```
Verbose flag will fill each row, i.e, not leave blanks, for easier usage with _batch_ scripts or with manual grepping.
### example
2016-01-05 11:11:31 -05:00
![screenshot](https://cloud.githubusercontent.com/assets/7356025/12120034/9f682ec0-b3d7-11e5-9213-046fff43c3a9.png)
2015-12-22 22:52:21 -05:00
## ChangeLog
2016-01-05 07:14:50 -05:00
### v1.0.20160105
2016-01-05 11:04:49 -05:00
- multiple additional warnings
- support for none algorithm
2016-01-05 07:14:50 -05:00
- better compression handling
- ensure reading enough data (fixes few Linux SSH)
2015-12-30 06:17:58 -05:00
### v1.0.20151230
- Dropbear SSH support
2015-12-22 22:52:21 -05:00
### v1.0.20151223
- initial version