Nmap Development mailing list archives
Re: Request for ssh dumps
From: Brandon Enright <bmenrigh () ucsd edu>
Date: Thu, 9 Jul 2009 21:34:47 +0000
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 09 Jul 2009 08:58:05 +0300 ithilgore <ithilgore.ryu.l () gmail com> wrote:
Brandon Enright wrote:If you give me the command(s) you want me to run against a /16 (or three) I'll get them started tonight. Otherwise I'll work on this tomorrow. Brandon Sent from my phone. If you would like a digital signature for this email let me know and I will sign it later.Thanks Brandon. I haven't finished the ssh module completely yet, so there are still some pending issues. However, the dumps don't need to be acquired using Ncrack as a client. Any ssh client will do (I assume alsmost everyone is using openssh though). I just want to see if there are any issues from the server side. For example, OpenSSH sent the final SSH2_MSG_NEWKEYS message embedded in the final Diffie-Helman GEX reply and this caused some problems (which I am currently fixing), whereas dropbear sent the 2 messages as 2 separate packets. -- ithilgore
Okay so I was going to give you a packet capture of each of our SSH hosts but 1) we have too many, 2) only a few would be useful, and, 3) I'd prefer to anonymize it a little. At the end of this email are all of the SSH versions we have that Nmap detects. If you see anything fancy you want a capture of, email me or hit me up on AIM:bmenrigh or XMPP:bmenrigh () chat ucsd edu and I'll get you more info. Brandon $ egrep '^22\/tcp[[:space:]]+open[[:space:]]+ssh[[:space:]]' ssh_version.nmap | sort | uniq -c | sort -nr 1058 22/tcp open ssh Cisco SSH 1.25 (protocol 2.0) 689 22/tcp open ssh OpenSSH 5.1 (protocol 2.0) 596 22/tcp open ssh OpenSSH 4.3 (protocol 2.0) 357 22/tcp open ssh OpenSSH 5.1 (protocol 1.99) 307 22/tcp open ssh OpenSSH 3.9p1 (protocol 1.99) 208 22/tcp open ssh OpenSSH 3.9p1 (protocol 2.0) 153 22/tcp open ssh OpenSSH 4.3 (protocol 1.99) 130 22/tcp open ssh Cisco SSH 1.25 (protocol 1.99) 127 22/tcp open ssh OpenSSH 4.7p1 Debian 8ubuntu1.2 (protocol 2.0) 118 22/tcp open ssh OpenSSH 4.5 (protocol 1.99) 90 22/tcp open ssh OpenSSH 5.1p1 Debian 5ubuntu1 (protocol 2.0) 87 22/tcp open ssh SunSSH 1.1 (protocol 2.0) 78 22/tcp open ssh OpenSSH 4.5 (protocol 2.0) 75 22/tcp open ssh OpenSSH 4.7 (protocol 2.0) 61 22/tcp open ssh OpenSSH 3.6.1p2 (protocol 1.99) 54 22/tcp open ssh SunSSH 1.1.1 (protocol 2.0) 51 22/tcp open ssh OpenSSH 5.1p1 Debian 3ubuntu1 (protocol 2.0) 44 22/tcp open ssh OpenSSH 3.6.1p2 (protocol 2.0) 40 22/tcp open ssh OpenSSH 4.0 (protocol 2.0) 37 22/tcp open ssh OpenSSH 4.6 (protocol 1.99) 35 22/tcp open ssh OpenSSH 5.1p1 Debian 5 (protocol 2.0) 32 22/tcp open ssh OpenSSH 5.0 (protocol 2.0) 32 22/tcp open ssh OpenSSH 3.8.1p1 (protocol 2.0) 27 22/tcp open ssh SCS sshd 3.2.3 (protocol 2.0) 25 22/tcp open ssh OpenSSH 4.6 (protocol 2.0) 24 22/tcp open ssh OpenSSH 5.2 (protocol 2.0) 24 22/tcp open ssh OpenSSH 4.3p2 Debian 9etch3 (protocol 2.0) 21 22/tcp open ssh OpenSSH 4.2 (protocol 1.99) 20 22/tcp open ssh OpenSSH 5.2 (protocol 1.99) 20 22/tcp open ssh OpenSSH 4.4 (protocol 1.99) 18 22/tcp open ssh OpenSSH 3.5p1 (protocol 1.99) 15 22/tcp open ssh OpenSSH 4.1 (protocol 2.0) 13 22/tcp open ssh OpenSSH 5.0 (protocol 1.99) 13 22/tcp open ssh OpenSSH 4.7 (protocol 1.99) 13 22/tcp open ssh OpenSSH 4.4 (protocol 2.0) 11 22/tcp open ssh OpenSSH 4.5p1 (FreeBSD 20061110; protocol 2.0) 11 22/tcp open ssh OpenSSH 3.8.1p1 (protocol 1.99) 11 22/tcp open ssh OpenSSH 3.4p1+CAN-2004-0175 (protocol 1.99) 10 22/tcp open ssh SunSSH 1.0.1 (protocol 2.0) 10 22/tcp open ssh OpenSSH 4.6p1 Debian 5ubuntu0.6 (protocol 2.0) 10 22/tcp open ssh OpenSSH 4.2 (protocol 2.0) 10 22/tcp open ssh OpenSSH 3.4p1 (protocol 1.99) 9 22/tcp open ssh SCS sshd 3.2.0 (protocol 2.0) 8 22/tcp open ssh OpenSSH 3.7.1p2 (protocol 1.99) 8 22/tcp open ssh OpenSSH 3.4p1 Debian 1:3.4p1-1.woody.3 (protocol 2.0) 7 22/tcp open ssh SCS sshd 3.2.9.1 (protocol 2.0) 7 22/tcp open ssh OpenSSH 5.1p1 Debian 5+b1 (protocol 2.0) 7 22/tcp open ssh OpenSSH 5.1p1 (FreeBSD 20080901; protocol 2.0) 7 22/tcp open ssh OpenSSH 3.8 (protocol 1.99) 7 22/tcp open ssh Cisco SSH 1.25 (protocol 1.5) 7 22/tcp open ssh (protocol 2.0) 6 22/tcp open ssh SCS sshd 4.0.4.12 (protocol 2.0) 6 22/tcp open ssh OpenSSH 4.6p1 Debian 5ubuntu0.5 (protocol 2.0) 6 22/tcp open ssh OpenSSH 4.2p1 Debian 7ubuntu3.1 (protocol 2.0) 5 22/tcp open ssh SunSSH 1.0 (protocol 2.0) 5 22/tcp open ssh OpenSSH 4.3p2 Debian 9 (protocol 2.0) 5 22/tcp open ssh OpenSSH 4.3p2 Debian 8ubuntu1.5 (protocol 2.0) 5 22/tcp open ssh OpenSSH 4.3p2 Debian 8ubuntu1.4 (protocol 2.0) 5 22/tcp open ssh OpenSSH 4.1 (protocol 1.99) 5 22/tcp open ssh OpenSSH 3.8.1p1 Debian 8.sarge.6 (protocol 2.0) 5 22/tcp open ssh OpenSSH 3.8.1p1 Debian 8.sarge.4 (protocol 2.0) 5 22/tcp open ssh DesktopAuthority OpenSSH 3.8 (DesktopAuthority 6.0.201; protocol 2.0) 4 22/tcp open ssh SCS sshd 3.2.9.1 (protocol 1.99) 4 22/tcp open ssh OpenSSH 4.6p1 Debian 5build1 (protocol 2.0) 4 22/tcp open ssh OpenSSH 4.3p2 Debian 6 (protocol 2.0) 4 22/tcp open ssh OpenSSH 4.3p2 Debian 5ubuntu1 (protocol 2.0) 4 22/tcp open ssh HP Integrated Lights Out mpSSH 0.0.1 (protocol 2.0) 4 22/tcp open ssh Dropbear sshd 0.43 (protocol 2.0) 4 22/tcp open ssh Cisco VPN Concentrator SSHd (protocol 1.5) 4 22/tcp open ssh (protocol 1.99) 3 22/tcp open ssh WeOnlyDo sshd 2.1.0 (protocol 2.0) 3 22/tcp open ssh WeOnlyDo sshd 2.0.6 (protocol 2.0) 3 22/tcp open ssh SCS sshd 3.2.2 (protocol 2.0) 3 22/tcp open ssh OpenSSH 5.1p1 Debian 3 (protocol 2.0) 3 22/tcp open ssh OpenSSH 4.6p1 (protocol 1.99) 3 22/tcp open ssh OpenSSH 4.3p2 Debian 9etch2 (protocol 2.0) 3 22/tcp open ssh OpenSSH 4.2p1 Debian 7ubuntu3.5 (protocol 2.0) 3 22/tcp open ssh OpenSSH 3.9p1 NCSA_GSSAPI_20040818 KRB5 (protocol 2.0) 3 22/tcp open ssh OpenSSH 3.7p1 (protocol 2.0) 3 22/tcp open ssh OpenSSH 3.7.1p2 (protocol 2.0) 3 22/tcp open ssh OpenSSH 3.7.1p1 (protocol 1.99) 3 22/tcp open ssh OpenSSH 3.4p1 (protocol 2.0) 3 22/tcp open ssh OpenSSH 3.1p1 (protocol 1.99) 3 22/tcp open ssh APC AOS cryptlib sshd (protocol 1.99) 2 22/tcp open ssh lshd secure shell 2.0.4 (protocol 2.0) 2 22/tcp open ssh SCS sshd 3.2.5 (protocol 2.0) 2 22/tcp open ssh SCS sshd 3.2.2 (protocol 1.99) 2 22/tcp open ssh OpenSSH 5.0p1+sftpfilecontrol-v1.2-hpn13v1 (protocol 2.0) 2 22/tcp open ssh OpenSSH 4.7p1 Debian 8ubuntu1.2 (protocol 1.99) 2 22/tcp open ssh OpenSSH 4.7 (RemotelyAnywhere 8.0.747; protocol 2.0) 2 22/tcp open ssh OpenSSH 4.7 (RemotelyAnywhere 8.0.668; protocol 2.0) 2 22/tcp open ssh OpenSSH 4.6p1 Debian 5ubuntu0.1 (protocol 2.0) 2 22/tcp open ssh OpenSSH 4.5p1 (FreeBSD 20061110; protocol 1.99) 2 22/tcp open ssh OpenSSH 4.3p2-hpn12v9 (protocol 2.0) 2 22/tcp open ssh OpenSSH 4.3p2-hpn (protocol 2.0) 2 22/tcp open ssh OpenSSH 4.3p2 Debian 8ubuntu1 (protocol 2.0) 2 22/tcp open ssh OpenSSH 4.3p2 Debian 5ubuntu1.2 (protocol 2.0) 2 22/tcp open ssh OpenSSH 3.9 (protocol 2.0) 2 22/tcp open ssh OpenSSH 3.8p1 (protocol 2.0) 2 22/tcp open ssh OpenSSH 3.6.1p1+CAN-2004-0175 (protocol 1.99) 2 22/tcp open ssh OpenSSH 3.6.1p1 (protocol 2.0) 2 22/tcp open ssh OpenSSH 3.6.1p1 (protocol 1.99) 2 22/tcp open ssh OpenSSH 3.1p1 (protocol 2.0) 2 22/tcp open ssh Dropbear sshd 0.49 (protocol 2.0) 2 22/tcp open ssh Dropbear sshd 0.48 (protocol 2.0) 2 22/tcp open ssh CoreFTP sshd 0.1.2 (protocol 2.0) 2 22/tcp open ssh APC AOS cryptlib sshd (protocol 2.0) 1 22/tcp open ssh WeOnlyDo sshd 2.3.6.165 (protocol 2.0) 1 22/tcp open ssh WeOnlyDo sshd 2.1.8.98 (protocol 2.0) 1 22/tcp open ssh WeOnlyDo sshd 2.0.3 (protocol 2.0) 1 22/tcp open ssh SunSSH 1.2 (protocol 2.0) 1 22/tcp open ssh SrSshServer 1.00 (sshlib 1.82; protocol 2.0) 1 22/tcp open ssh SCS sshd 3.0.1 (protocol 2.0) 1 22/tcp open ssh SCS sshd 2.2.0 (protocol 1.99) 1 22/tcp open ssh OpenSSH 5.1p1-hpn13v5 (protocol 2.0) 1 22/tcp open ssh OpenSSH 5.1p1 Debian 2 (protocol 2.0) 1 22/tcp open ssh OpenSSH 5.0 (protocol 1.5) 1 22/tcp open ssh OpenSSH 4.7p1-hpn13v1 (protocol 2.0) 1 22/tcp open ssh OpenSSH 4.7p1 Debian 8ubuntu1 (protocol 2.0) 1 22/tcp open ssh OpenSSH 4.7p1 Debian 8 (protocol 2.0) 1 22/tcp open ssh OpenSSH 4.6p1 Debian 5ubuntu0.4 (protocol 2.0) 1 22/tcp open ssh OpenSSH 4.3p2-6-cern-hpn (protocol 1.99) 1 22/tcp open ssh OpenSSH 4.3p2-4-cern-hpn (protocol 1.99) 1 22/tcp open ssh OpenSSH 4.3p2 Debian 9etch3 (protocol 1.99) 1 22/tcp open ssh OpenSSH 4.3p2 Debian 9etch2 (protocol 1.99) 1 22/tcp open ssh OpenSSH 4.3p2 Debian 9etch1 (protocol 2.0) 1 22/tcp open ssh OpenSSH 4.3p2 Debian 8ubuntu1.1 (protocol 2.0) 1 22/tcp open ssh OpenSSH 4.3p2 Debian 8 (protocol 1.99) 1 22/tcp open ssh OpenSSH 4.3p2 Debian 5~bpo.1.netgear1 (protocol 2.0) 1 22/tcp open ssh OpenSSH 4.3p2 (protocol 1.99) 1 22/tcp open ssh OpenSSH 4.3 (RemotelyAnywhere 7.10.552; protocol 2.0) 1 22/tcp open ssh OpenSSH 4.3 (RemotelyAnywhere 7.01.541; protocol 2.0) 1 22/tcp open ssh OpenSSH 4.3 (RemotelyAnywhere 7.00.531; protocol 2.0) 1 22/tcp open ssh OpenSSH 4.2p1 Debian 7ubuntu3.4 (protocol 2.0) 1 22/tcp open ssh OpenSSH 4.2p1 Debian 7ubuntu3 (protocol 2.0) 1 22/tcp open ssh OpenSSH 4.2p1 (FreeBSD 20060930; protocol 2.0) 1 22/tcp open ssh OpenSSH 4.2p1 (FreeBSD 20060930; protocol 1.99) 1 22/tcp open ssh OpenSSH 4.2p1 (FreeBSD 20050903; protocol 2.0) 1 22/tcp open ssh OpenSSH 4.1p1 Debian 7ubuntu4 (protocol 2.0) 1 22/tcp open ssh OpenSSH 4.0 (protocol 1.99) 1 22/tcp open ssh OpenSSH 4.0 (RemotelyAnywhere 6.20.467; protocol 2.0) 1 22/tcp open ssh OpenSSH 3.9p1 NCSA_GSSAPI_20040818 KRB5 (protocol 1.99) 1 22/tcp open ssh OpenSSH 3.8.1p1 (FreeBSD 20040419; protocol 2.0) 1 22/tcp open ssh OpenSSH 3.7.1p3 (protocol 1.99) 1 22/tcp open ssh OpenSSH 3.6.1p1+CAN-2004-0175 (protocol 2.0) 1 22/tcp open ssh OpenSSH 3.5p1 (FreeBSD 20030924; protocol 2.0) 1 22/tcp open ssh OpenSSH 3.5p1 (FreeBSD 20030924; protocol 1.99) 1 22/tcp open ssh OpenSSH 3.4 (protocol 2.0) 1 22/tcp open ssh HP Integrated Lights Out mpSSH 0.1.0 (protocol 2.0) 1 22/tcp open ssh Dropbear sshd 0.44test4 (protocol 2.0) 1 22/tcp open ssh DesktopAuthority OpenSSH 3.8 (DesktopAuthority 5.55.030; protocol 2.0) 1 22/tcp open ssh DesktopAuthority OpenSSH 3.8 (DesktopAuthority 5.32.002; protocol 2.0) 1 22/tcp open ssh DesktopAuthority OpenSSH 3.8 (DesktopAuthority 5.31.429; protocol 2.0) 1 22/tcp open ssh Dell PowerConnect sshd (protocol 1.5) 1 22/tcp open ssh Cisco CSS SSH (Unlicensed) 1 22/tcp open ssh Bitvise WinSSHD 4.26 (sshlib 1.82; protocol 2.0) 1 22/tcp open ssh Bitvise WinSSHD 4.21 (sshlib 1.82; protocol 2.0) 1 22/tcp open ssh Bitvise WinSSHD 4.18 (sshlib 1.81; protocol 2.0) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.11 (GNU/Linux) iEYEARECAAYFAkpWYn8ACgkQqaGPzAsl94IAbQCgnFWVtLbnX7/8c9n9uc6DL63I qHkAniOe7oDyeJQbHUJTTzO7YG0vIv7n =Ho3n -----END PGP SIGNATURE----- _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Current thread:
- Request for ssh dumps ithilgore (Jul 08)
- Re: Request for ssh dumps Brandon Enright (Jul 08)
- Re: Request for ssh dumps ithilgore (Jul 08)
- Re: Request for ssh dumps Luis M. (Jul 09)
- Re: Request for ssh dumps ithilgore (Jul 09)
- Re: Request for ssh dumps Brandon Enright (Jul 09)
- Re: Request for ssh dumps ithilgore (Jul 08)
- Re: Request for ssh dumps Brandon Enright (Jul 08)