SSH server & client auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc) .
Go to file
2015-12-30 13:07:50 +02:00
.gitignore Init project. 2015-12-23 04:56:13 +02:00
README.md Note compatibility. 2015-12-23 05:56:22 +02:00
ssh-audit.py Add Dropbear SSH historical information. 2015-12-30 13:07:50 +02:00

ssh-audit

ssh-audit is a tool for ssh server auditing.

Features

  • grab banner, detect ssh1 protocol and zlib compression;
  • gather key-exchange, host-key, encryption and message authentication code algorithms;
  • output algorithm information (available since, removed/disabled, unsafe/weak/legacy, etc);
  • compatible with python2 and python3;

Usage

usage: ssh-audit.py [-nv] host[:port]

   -v  verbose
   -n  disable colors

Verbose flag will fill each row, i.e, not leave blanks, for easier usage with batch scripts or with manual grepping.

example

screenshot

ChangeLog

v1.0.20151223

  • initial version