15 lines
747 B
Text
15 lines
747 B
Text
ssh-audit is a tool for ssh server & client configuration auditing
|
|
|
|
Features:
|
|
* SSH1 and SSH2 protocol server support
|
|
* analyze SSH client configuration
|
|
* grab banner, recognize device or software and OS, detect compression
|
|
* gather key-exchange, host-key, encryption and MAC algorithms
|
|
* output algorithm information
|
|
(available since, removed/disabled, unsafe/weak/legacy, etc)
|
|
* output algorithm recommendations
|
|
(append or remove based on recognized software version)
|
|
* output security information (related issues, assigned CVE list, etc)
|
|
* analyze SSH version compatibility based on algorithm information
|
|
* historical information from OpenSSH, Dropbear SSH and libssh
|
|
* policy scans to ensure adherence to a hardened/standard configuration
|