Detecting SSH versions with the SSH Version Scanner
SSH is a widely used application that provides a secure remote login. It uses strong cryptography to provide authentication and confidentiality. In this recipe, we will be detecting SSH versions currently running on our target. With this SSH Version Scanner, we can determine if the target is equipped with any vulnerable SSH version and, if yes, we can move further.
Getting ready
Previous scans show us that we have TCP port 22
open on the target systems, so we will use the SSH Version Scanner auxiliary module to get information about the SSH version running on the target system.
How to do it...
- To scan for SSH servers on the network, use the
auxiliary/scanner/ssh/ssh_version
auxiliary module, set the target address range inRHOSTS
, and the number of concurrent threads to256
:
msf > use auxiliary/scanner/ssh/ssh_version msf auxiliary(ssh_version) > set RHOSTS 192.168.216.0/24 RHOSTS => 192.168.216.0/24 msf auxiliary(ssh_version) >...