SSHScan

A testing tool that enumerates SSH Ciphers. Using SSHScan, weak ciphers can be easily detected.

Installation

git clone https://github.com/evict/SSHScan.git

Usage

python sshscan.py [options]

Flags

Usage: usage sshscan.py [options]

Options:
  --version             show program's version number and exit
  -h, --help            show this help message and exit

  Options:
    -t TARGET, --target=TARGET
                        Specify target as 'target' or 'target:port' (port 22 is default)
    -l TARGETLIST, --target-list=TARGETLIST
                        File with targets: 'target' or 'target:port' seperated by a newline (port 22 is default)

Examples

python sshscan.py -t <target>:22

[*] Initiating scan for <target> on port 22
[*] Connected to <target> on port 22...
    [+] Target SSH version is: SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.3
    [+] Retrieving ciphers...
    [+] Detected the following ciphers:
            aes128-ctr                           [email protected]
            aes192-ctr                           [email protected]
            aes256-ctr                           [email protected]

    [+] Detected the following KEX algorithms:
            curve25519-sha256                    ecdh-sha2-nistp256
            [email protected]         ecdh-sha2-nistp384
            diffie-hellman-group14-sha1          ecdh-sha2-nistp521
            diffie-hellman-group-exchange-sha256

    [+] Detected the following MACs:
            hmac-sha1                            [email protected]
            hmac-sha2-256                        [email protected]
            hmac-sha2-512                        [email protected]
            umac-64                              [email protected]
            [email protected]

    [+] Detected the following HostKey algorithms:
            ecdsa-sha2-nistp256                  ssh-rsa
            ssh-ed25519

    [+] No weak ciphers detected!
    [+] Detected the following weak KEX algorithms:
            diffie-hellman-group14-sha1          ecdh-sha2-nistp384
            ecdh-sha2-nistp256                   ecdh-sha2-nistp521


    [+] Detected the following weak MACs:
            hmac-sha1                            [email protected]
            umac-64                              [email protected]


    [+] Detected the following weak HostKey algorithms:
            ecdsa-sha2-nistp256

URL list