jtesta/ssh-audit

Issues

• Remove SSH version 1 support

  #298 opened 2 months ago by jtesta
  7

• more concise [info] phrasing for all

  #253 opened a month ago by perkelix
  4

• more concise phrasing for kex-strict-s-v00@openssh.com [info]

  #254 opened a month ago by perkelix
  4

• more concise phrasing for (kex) ext-info-s [info]

  #256 opened a month ago by perkelix
  5

• Fix Snap build warning

  #301 opened a month ago by jtesta
  1

• RFC8308 7.2- Extension Negotiation in the Secure Shell (SSH) Protocol (ext-info-s, ext-info-c)

  #291 opened 2 months ago by perkelix
  12

• hardening guide: preparing for Debian 13

  #292 opened 2 months ago by perkelix
  0

• policies suggest different orders

  #283 opened 2 months ago by perkelix
  1

• JSON mode break JSON parser

  #295 opened 2 months ago by LoHub
  3

• Fix --conn-rate-test feature on Windows

  #261 opened 2 months ago by jtesta
  1

• Feature Request: Output Directory and SSH Auth Methods

  #290 opened 2 months ago by l4rm4nd
  2

• CVE-2021-41617 detected but ubuntu (20.04) has backported fix according to ubuntu

  #296 opened 2 months ago by MalfuncEddie
  2

• CVE-2024-6387 Possible RCE in openssh

  #279 opened 2 months ago by cmidkiff87
  5

• CVE Detection

  #240 opened 2 months ago by cschuber
  6

• Specifying port does not work

  #294 opened 2 months ago by compass-dexter
  3

• if connection trottling is configured, diffie-hellman-group-exchange-sha256 warning about bit numbers disappear

  #262 opened 2 months ago by perkelix
  9

• Error while scanning multiple host in against a policy (`-T` & `-P`)

  #284 opened 2 months ago by dreizehnutters
  2

• Migrate from getopt module to argparse.

  #297 opened 2 months ago by jtesta
  0

• cannot create mount point for file /tmp/snap.rootfs_

  #268 opened 2 months ago by scott-mackenzie
  2

• Error while scanning multiple host

  #293 opened 3 months ago by floriankuek
  1

• DHEat never finishes on some platforms due to `errno` checks

  #288 opened 3 months ago by drewmnoel
  4

• `ssh-audit` fails when scanning multiple hosts against a policy.

  #273 opened 5 months ago by hamarituc
  2

• Missing "keysize" Information in Output

  #275 opened 4 months ago by dreizehnutters
  4

• Inconsitent JSON Output Format

  #280 opened 5 months ago by dreizehnutters
  1

• !!! WARNING: unknown algorithm(s) found!: kex-strict-s-v00@openssh.com

  #282 opened 5 months ago by zehrealmrmeow
  1

• please specify recommended connection trottling settings against

  #263 opened 5 months ago by perkelix
  8

• Need for an option dedicated to the presentation of evaluations in terminal

  #247 opened 5 months ago by Ricky-Tigg
  1

• Failing to detect `ssh-ed25519` host key algorithm already present

  #272 opened 5 months ago by ChaoticRoman
  5

• DHEat check supports only IPv4

  #269 opened 5 months ago by yuki0iq
  4

• WARNING: unknown algorithm(s) found!

  #270 opened 5 months ago by leolanzi
  2

• Unsupported KEX algorithm "sntrup761x25519-sha512@openssh.com"

  #274 opened 5 months ago by Spleenftw
  1

• gextest fallback mechanism

  #265 opened 5 months ago by drakkan
  0

• rsa-sha2-512 and rsa-sha2-256 - key algorithm to append

  #260 opened 8 months ago by daniejstriata
  5

• Update Hardening guide (Terrapin)

  #235 opened 8 months ago by keteague
  4

• suggested new ssh-audit version scheme

  #255 opened 8 months ago by perkelix
  1

• curve25519-sha256 incorrectly marked as default from 6.4. to 8.9

  #258 opened 8 months ago by perkelix
  2

• update Dropbear SSH support list

  #257 opened 8 months ago by perkelix
  2

• Adding support for defining allowed algorithms (Soft Match)

  #251 opened 8 months ago by yannik1015
  0

• mismatch between audit policy and hardening guide config order

  #248 opened 8 months ago by perkelix
  1

• Hardening guides on sshaudit.com include unsupported algorithms and redundancies

  #250 opened 8 months ago by JuliusBairaktaris
  4

• Gex tests for clients

  #238 opened a year ago by ecki
  2

• Build multi-architecture snaps

  #232 opened 9 months ago by jtesta
  1

• precedence order in hardening and ssh-audit tool

  #243 opened 9 months ago by perkelix
  4

• "using small 512-bit CA key modulus" misleading

  #239 opened 9 months ago by philfry
  1

• [Potential] Improvement for restricting supported key exchange, cipher, and MAC algorithms | ssh-audit/wiki/macOS-13-(Ventura)-&-14-(Sonoma)

  #246 opened 9 months ago by A-Metal-Penguin
  1

• honour the NO_COLOR environment variable

  #234 opened 10 months ago by rgl
  1

• Server policies don't account for 'kex-strict-s-v00@openssh.com', yet?

  #236 opened 10 months ago by mejofi
  3

• Added Void Linux as new system to the wiki.

  #241 opened 10 months ago by fac3plant
  1

• client audit

  #245 opened 10 months ago by ecki
  0

• Unknown algorithm: kex-strict-s-v00@openssh.com -- re open

  #237 opened a year ago by mamoona-aslam
  3