Giter Site home page Giter Site logo

threatpatrols / docker-sshscanfork Goto Github PK

View Code? Open in Web Editor NEW

This project forked from mozilla/ssh_scan

4.0 0.0 1.0 1.18 MB

SSH configuration and policy scanner, updated (fork>github.com/mozilla/ssh_scan)

Home Page: https://hub.docker.com/r/threatpatrols/sshscanfork

License: Mozilla Public License 2.0

Shell 1.17% Ruby 98.50% Dockerfile 0.34%
sshscan sshscanner ssh ssh-server docker

docker-sshscanfork's Introduction

sshscanfork

A fork from mozilla/ssh_scan with updates because the original mozilla/ssh_scan project has been archived by Mozilla.

The original motivation for this fork was to update the dependencies that were causing package and container scanning to trigger alerts.

Given the upstream (Mozilla) project was archived 2022-11-09 this fork exists without being merged/pulled back into theirs. To make it possible for others to use this new fork the original references to github.com/mozilla have been adjusted to github.com/threatpatrols

Key Benefits

  • Minimal Dependencies - Uses native Ruby and BinData to do its work, no heavy dependencies.
  • Not Just a Script - Implementation is portable for use in another project or for automation of tasks.
  • Simple - Just point ssh_scan at an SSH service and get a JSON report of what it supports and its policy status.
  • Configurable - Make your own custom policies that fit your unique policy requirements.

Versions

  • 0.1.44 - this fork-version bumps the version from the upstream 0.0.44 to 0.1.44 without any new ssh_scan functionality, the changes in this version are dependency and documentation updates.

Setup

To run from Docker:

docker pull threatpatrols/sshscanfork
docker run -it threatpatrols/sshscanfork --help

To install and run from source:

# clone repo
git clone https://github.com/threatpatrols/sshscanfork.git
cd sshscanfork

gem install bundler
bundle install

./bin/ssh_scan --help

Synopsis

ssh_scan v0.1.44 (https://github.com/threatpatrols/sshscanfork)

Usage: ssh_scan [options]
    -t, --target [IP/Range/Hostname] IP/Ranges/Hostname to scan
    -f, --file [FilePath]            File Path of the file containing IP/Range/Hostnames to scan
    -T, --timeout [seconds]          Timeout per connect after which ssh_scan gives up on the host
    -L, --logger [Log File Path]     Enable logger
    -O, --from_json [FilePath]       File to read JSON output from
    -o, --output [FilePath]          File to write JSON output to
        --output-type [json, yaml]   Format to write stdout to json or yaml
    -p, --port [PORT]                Port (Default: 22)
    -P, --policy [FILE]              Custom policy file (Default: Mozilla Modern)
        --threads [NUMBER]           Number of worker threads (Default: 5)
        --fingerprint-db [FILE]      File location of fingerprint database (Default: ./fingerprints.db)
        --suppress-update-status     Do not check for updates
    -u, --unit-test [FILE]           Throw appropriate exit codes based on compliance status
    -V [STD_LOGGING_LEVEL],
        --verbosity
    -v, --version                    Display just version info
    -h, --help                       Show this message

Examples:

  ssh_scan -t 192.168.1.1
  ssh_scan -t server.example.com
  ssh_scan -t ::1
  ssh_scan -t ::1 -T 5
  ssh_scan -f hosts.txt
  ssh_scan -o output.json
  ssh_scan -O output.json -o rescan_output.json
  ssh_scan -t 192.168.1.1 -p 22222
  ssh_scan -t 192.168.1.1 -p 22222 -L output.log -V INFO
  ssh_scan -t 192.168.1.1 -P custom_policy.yml
  ssh_scan -t 192.168.1.1 --unit-test -P custom_policy.yml

Credits

Original Mozilla Project and all the Original Contributors

Sources of Inspiration for ssh_scan

  • Mozilla OpenSSH Security Guide - For providing a sane baseline policy recommendation for SSH configuration parameters (eg. Ciphers, MACs, and KexAlgos).

docker-sshscanfork's People

Contributors

rishabhs95 avatar jinankjain avatar hvardhanx avatar ashishgaurav13 avatar ndejong avatar flash1452 avatar jvehent avatar yashmehrotra avatar petems avatar rrazor avatar j-m0 avatar vishpandey avatar nicolasleger avatar pjackowski avatar shaardie avatar mariuz avatar pmarques avatar mozilla-github-standards avatar netsgnut avatar knweiss avatar jason-cooke avatar j12934 avatar pwnbus avatar amgrice avatar april avatar anantshri avatar

Stargazers

Jonathan Marshall avatar avatar Royce Williams avatar Bruno Rohée avatar

Forkers

elliotkendall

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.