[root@blogs-v2 ~]# nmap --script 'ssh2*' 192.168.0.221 Starting Nmap 6.40 ( http://nmap.org ) at 2022-03-08 15:43 CST Nmap scan report for 192.168.0.221 Host is up (0.0022s latency). Not shown: 998 closed ports PORT STATE SERVICE 22/tcp open ssh | ssh2-enum-algos: | kex...
The following are the most common weak MAC algorithms encountered: hmac-md5 hmac-md5-96 hmac-sha1-96 hmac-sha2-256-96 hmac-sha2-512-96 Pentesting SSH MAC Algorithms Pentesters can quickly confirm what SSH MAC algorithms are supported with the followingnmap script: ...
- 你可以用ssh -vv参数来连接一个SSH服务器,然后在输出中查看客户端和服务器提供的算法列表,比如local client KEXINIT proposal是客户端提供的密钥交换算法列表,peer server KEXINIT proposal是服务器提供的密钥交换算法列表²。 - 你可以用nmap --script ssh2-enum-algos命令来扫描一个SSH服务器,然后查看它支持的...
sshkey-exchange-algorithmsecdh-sha2-nistp256curve25519-sha256diffie-hellman-group-exchange-sha256 Reference:Aruba Documentation Pentesting SSH Weak Key Exchange Algorithm The followingnmapscript is the fastest way to confirm algorithm supported:
3.3. UsingnmapScript Similarly, we can usenmapto see what ciphers the target server offers. For this purpose, we use thessh2-enum-algos.nsescript: $ nmap -sV --script=ssh2-enum-algos.nse -p 22 192.168.29.116 ... | encryption_algorithms: (6) ...
nmap --script ssh2-enum-algos -sV -p 22 10.142.78.193 可以看到支持 arcfour、arcfour128、arcfour256 等弱加密算法。 三、漏洞修复 方案一:修改 SSH 配置文件,添加加密算法: 先备份文件cp sshd_config sshd_config20210225 vim /etc/ssh/sshd_config ...