ssh-audit

Commit Graph

Author	SHA1	Message	Date
Joe Testa	8190fe59d0	Added implementation for DHEat denial-of-service attack (CVE-2002-20001). (#211 , #217 )	2024-04-18 13:58:13 -04:00
Joe Testa	9fae870260	Added allow_larger_keys flag to custom policies to control whether targets can have larger keys, and added Docker tests to complete work started in PR #242 .	2024-03-19 14:45:19 -04:00
Joe Testa	3c31934ac7	Added tests and other cleanups resulting from merging PR #252 .	2024-03-18 17:48:50 -04:00
Joe Testa	c259a83782	Added note that when a target is properly configured against the Terrapin vulnerability that unpatched peers may still create vulnerable connections. Updated Ubuntu Server & Client 20.04 & 22.04 policies to include new key exchange markers related to Terrapin counter-measures.	2023-12-19 14:03:28 -05:00
Joe Testa	2809ff464a	Added --rm to docker run commands so stopped containers are automatically removed.	2023-09-12 08:38:07 -04:00
Joe Testa	953683a762	Fixed most warnings from Shellcheck scans. (#197 )	2023-09-05 13:14:21 -04:00
Joe Testa	199e75f6cd	Refined GEX testing against OpenSSH servers: when the fallback mechanism is suspected of being triggered, perform an additional test to obtain more accurate results.	2023-09-03 16:13:00 -04:00
Joe Testa	7f8d6b4d5b	Fixed built-in policy formatting and filled in missing host key size information.	2023-04-26 15:47:58 -04:00
Joe Testa	263267c5ad	Added support for mixed host key/CA key types (i.e.: RSA host keys signed by ED25519 CAs) (#120 ).	2023-04-25 09:17:32 -04:00
Joe Testa	dc083de87e	Added recommendations and CVE information to JSON output (#122 ).	2023-03-24 18:48:36 -04:00
Joe Testa	c02ab8f170	Added --accept option to automatically update failed tests.	2023-03-21 11:28:52 -04:00
Joe Testa	cdaee69642	Improved debugging output.	2023-03-21 10:48:58 -04:00
Joe Testa	c9dc9a9c10	Now issues a warning when 2048-bit moduli are encountered.	2023-02-06 16:27:30 -05:00
a1346054	597b500eba	Minor cleanups (#116 ) * docker_test.sh: fix shellcheck warnings * docker_test.sh: unify style No changes in functionality. * docker_test.sh: whitespace fixes * stop mixing tabs and spaces * remove trailing whitespace * invoke bash using /usr/bin/env * build_windows_executable.sh: fix variable assignment * update_windows_man_page.sh: unify style No changes in functionality. * whitespace fixes * stop mixing tabs and spaces * remove trailing whitespace * fix spelling * remove trailing whitespace	2021-08-27 11:19:18 -04:00
Joe Testa	45da9f20ae	Added 'rsa-sha2-512' and 'rsa-sha2-256' to OpenSSH 8.1 (and earlier) policies.	2021-05-31 15:49:56 -04:00
Joe Testa	1ba4c7c7ca	Send KEX before reading server's KEX during host key and GEX tests; this prevents deadlock against certain server implementations.	2021-01-20 15:27:38 -05:00
Joe Testa	00dc22b00b	Delete output directory only upon successful run to make debugging easier.	2020-11-05 20:25:34 -05:00
Joe Testa	53300047e5	Docker testing now continues regardless of failures (makes fixing multiple broken tests much easier).	2020-10-20 21:26:06 -04:00
Joe Testa	046c866da4	Moved built-in policies from external files to internal database. (#75 )	2020-10-19 17:27:37 -04:00
Joe Testa	ca4ebc56f9	Docker images are now pulled from Dockerhub by default.	2020-10-01 19:42:48 -04:00
Joe Testa	b5d7f73125	When an unexpected exit code is returned, print more debugging info.	2020-07-29 12:31:24 -04:00
Joe Testa	49bd2c96a8	Added return values for standard scans.	2020-07-07 15:56:37 -04:00
Joe Testa	dd44e2f010	Added policy checks (#10 ).	2020-06-30 15:53:50 -04:00
Joe Testa	06f868d76f	Added timeout of 0 to container stop command.	2019-11-30 23:49:31 -05:00
Joe Testa	0263769243	Added JSON output tests to docker testing suite.	2019-11-08 18:40:32 -05:00
Joe Testa	7221413567	Added TinySSH test.	2019-08-27 22:28:24 -04:00
Joe Testa	120f898539	Added Dropbear test.	2019-08-26 14:45:31 -04:00
Joe Testa	4ebccb8068	Added OpenSSH v4.0 test.	2019-08-22 16:48:23 -04:00
Joe Testa	4f138d7f82	Added docker testing framework.	2019-08-22 16:04:46 -04:00

29 Commits