Tools compared: SSH security scanners

Finding the right tool for the job can be difficult task. This sheet compares ScanSSH, ssh-audit and ssh_scan.

Tool comparison: ScanSSH, ssh-audit and ssh_scan
ScanSSHssh-auditssh_scan
Description

ScanSSH is a security tool to perform scans on SSH to detect open proxies and available services. It retrieves version information and related details.

The ssh-audit tool helps to perform a security assessment of SSH servers and their configuration. It can be used for security testing and penetration tests.

The ssh_scan utility is a SSH configuration and policy scanner maintained by the Mozilla Foundation. It helps to secure Linux systems running the OpenSSH.

Dependencies
Strenghts

Project is mature (10+ years), The source code of this software is available

The source code is easy to read and understand, Tool is easy to use, More than 2000 GitHub stars, Very low number of dependencies, The source code of this software is available

More than 10 contributors, Many releases available, The source code of this software is available, Supported by a large company

Weaknesses
Programming language(s)

C

Python

Ruby

Last release

2.1.2 (2017-04-21)

1.7.0 (2016-10-26)

0.0.41 (2019-05-03)

Tool page (last updated)

2018-04-29

2018-07-07

2019-08-01

Tool score

74

60

84

Download

Download

Download

Download

More information

ScanSSH review

ssh-audit review

ssh_scan review