Skip to content

knadt/OpenSSH-Enumeration

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
LICENSE
LICENSE
 
 
OpenSSH_Emum.py
OpenSSH_Emum.py
 
 
README.md
README.md
 
 

Repository files navigation

OpenSSH-Enumeration

Vulnerability: http://seclists.org/oss-sec/2018/q3/124 Orignial POC: https://bugfuzz.com/stuff/ssh-check-username.py

Affected Versions: OpenSSH version < 7.7
CVE: CVE-2018-15473

Getting Started

python Openssh.py -h

Usage

usage: Openssh.py [-h] [--port PORT] [-u USERNAME] [-U USERLIST] [-o OUTPUT]
                  hostname
--port 22 default
-u root default

positional arguments:
  hostname

optional arguments:
  -h, --help            show this help message and exit
  --port PORT
  -u USERNAME, --username USERNAME
                        input a single username
  -U USERLIST, --userlist USERLIST
                        input a username file
  -o OUTPUT, --output OUTPUT
                        output file

Prerequisites

What things you need to install the software and how to install them

Python 2.7.15
git clone https://github.com/knadt/OpenSSH-Enumeration

Exampe

Check one username with on port 22 host 127.0.0.1

python Openssh.py 127.0.0.1 -u root

Check a list of usernames on port 22 host 127.0.0.1 and create an output file

python Openssh.py 127.0.0.1 -U username.txt --port 22 -o ~/Desktop/validusers.txt

Authors

About

OpenSSH Username Enumeration

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

2 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages