关联漏洞
标题:
OpenSSH 安全漏洞
(CVE-2024-6387)
描述:OpenSSH(OpenBSD Secure Shell)是加拿大OpenBSD计划组的一套用于安全访问远程计算机的连接工具。该工具是SSH协议的开源实现,支持对所有的传输进行加密,可有效阻止窃听、连接劫持以及其他网络级的攻击。 OpenSSH 存在安全漏洞,该漏洞源于信号处理程序中存在竞争条件,攻击者利用该漏洞可以在无需认证的情况下远程执行任意代码并获得系统控制权。
描述
OpenSSH RCE Massive Vulnerable Scanner
介绍
# OpenSSH CVE Scanner
The OpenSSH CVE Scanner is a Python script designed to scan multiple SSH targets for vulnerabilities based on their OpenSSH version. It utilizes threading for concurrent scanning and integrates logging with colored output for enhanced visibility.
## Features
- **Multi-threaded Scanning:** Utilizes threading to concurrently scan multiple targets, improving efficiency.
- **CVE Vulnerability Detection:** Checks SSH versions against a predefined list of CVE vulnerabilities to determine if a version is vulnerable.
- **Logging and Output:** Logs scan results to a file (`scan.log`) and optionally saves vulnerable targets to an output file.
- **Color-coded Output:** Uses Colorama and Coloredlogs to provide color-coded terminal output for clear status indication.
- **Interrupt Handling:** Supports Ctrl+C to gracefully terminate the script while ensuring ongoing threads complete their tasks.
## Usage
1. **Setup:**
- Ensure Python dependencies (`coloredlogs`, `packaging`) are installed (`pip install coloredlogs packaging`).
2. **Running the Scanner:**
- Provide a file (`-f`) containing a list of targets in the format `ip:port`.
- Optionally specify an output file (`-o`) to save vulnerable targets.
- Adjust the number of threads (`-t`) based on system resources or scanning requirements.
3. **Example Command:**
```bash
python open_ssh_scanner.py -f targets.txt -o vulnerable_ips.txt -t 5
文件快照
[4.0K] /data/pocs/7a11faf8d4505d63374c04b91aa7d9b4c42a13e5
├── [1.4K] README.md
└── [7.3K] scanner.py
0 directories, 2 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。