SSHScan is a testing tool that enumerates SSH Ciphers. We Can easily detect weak ciphers by using this .
Lets tryout SSHScan in BrokenWeb (A Vulnerable machine) hosted locally .
Brokenweb IP : 192.168.3.107
codebreaker@zbox:~$ ./SSHScan/sshscan.py -t 192.168.3.107:22
In Network Pentesting, Once you detect an SSH port , then try for SSHScan to detect the ciphers. If KEX algoritham is weak then an attacker can easily create a Denial of Service attack on SSH port and hence the target wont be accessible by the anyone at the moment.
GITHUB Link:
https://github.com/evict/SSHScan
Installation :
git clone https://github.com/evict/SSHScan
Lets tryout SSHScan in BrokenWeb (A Vulnerable machine) hosted locally .
Brokenweb IP : 192.168.3.107
codebreaker@zbox:~$ ./SSHScan/sshscan.py -t 192.168.3.107:22
In Network Pentesting, Once you detect an SSH port , then try for SSHScan to detect the ciphers. If KEX algoritham is weak then an attacker can easily create a Denial of Service attack on SSH port and hence the target wont be accessible by the anyone at the moment.
GITHUB Link:
https://github.com/evict/SSHScan
Installation :
git clone https://github.com/evict/SSHScan
Thanks first of all for the useful info.the idea in this article is quite different and innovative please update more.
ReplyDeleteSelenium Training in Chennai
selenium training in OMR
JAVA Training in Chennai
Python Training in Chennai
Hadoop Training in Chennai
Software testing training in chennai
Selenium Training in Chennai
Selenium Training in Velachery
The article is so informative. This is more helpful for our
ReplyDeleteBest online software testing training course institute in chennai with placement
Best selenium testing online course training in chennai
Learn best software testing online certification course class in chennai with placement
Magento 2 Developer course training institute in chennai
Thanks for sharing.
Cipher testing
ReplyDelete