Tool and Usage
|Latest release||1.7.0 |
Why this tool?
The ssh-audit tool is of great help when scanning SSH servers to discover possible improvements. It is written in Python and with a simple 'git clone' it can already be started. You typically would use a tool like this to improve your own SSH configurations or as part of a security assignment.
How it works
The tool has a range of functions to test the SSH instance it is scanning. It looks at banner texts and protocol specifics to determine what kind of system and SSH server it is dealing with it. By comparing responses with known issues, it can even discover particular vulnerabilities.
Usage and audience
ssh-audit is commonly used for application security, penetration testing, or security assessment. Target users for this tool are pentesters, security professionals, and system administrators.
- Colored output
- Command line interface
- Multiple levels of details in output
Example usage and output
Tool review and remarks
The review and analysis of this project resulted in the following remarks for this security tool:
- + The source code is easy to read and understand
- + Tool is easy to use
- + More than 2000 GitHub stars
- + Very low number of dependencies
- + The source code of this software is available
Supported operating systems
Ssh-audit is known to work on Linux.
Similar tools to ssh-audit:
SSHsec scans a system running the SSH protocol and retrieves its configuration, host keys, and Diffie-Hellman groups.
The ssh_scan utility is a SSH configuration and policy scanner maintained by the Mozilla Foundation. It helps to secure Linux systems running the OpenSSH.
Lynis is a security auditing tool for systems running Linux, macOS, or Unix. It can be used for security assessments and configuration audits.
Found an improvement? Help the community by submitting an update.