关联漏洞
标题:
OpenSSH 安全漏洞
(CVE-2024-6387)
描述:OpenSSH(OpenBSD Secure Shell)是加拿大OpenBSD计划组的一套用于安全访问远程计算机的连接工具。该工具是SSH协议的开源实现,支持对所有的传输进行加密,可有效阻止窃听、连接劫持以及其他网络级的攻击。 OpenSSH 存在安全漏洞,该漏洞源于信号处理程序中存在竞争条件,攻击者利用该漏洞可以在无需认证的情况下远程执行任意代码并获得系统控制权。
描述
SentinelSSH is an advanced, high-performance SSH vulnerability scanner written in Go. It's specifically designed to detect the CVE-2024-6387 vulnerability in OpenSSH servers across various network environments.
介绍
# SentinelSSH: Advanced CVE-2024-6387 Vulnerability Scanner
SentinelSSH is an advanced, high-performance SSH vulnerability scanner written in Go. It's specifically designed to detect the CVE-2024-6387 vulnerability in OpenSSH servers across various network environments.
## Installation
To install SentinelSSH, make sure you have Go installed on your system (version 1.16 or later), then run:
```bash
go install github.com/harshinsecurity/sentinelssh/cmd/sentinelssh@latest
```
## Usage
After installation, you can run SentinelSSH directly from the command line:
```bash
sentinelssh [flags] [targets...]
```
### Flags
- `--port, -p`: Target port number (default: 22)
- `--timeout, -t`: Connection timeout in seconds (default: 5)
- `--concurrency, -c`: Number of concurrent scans (default: 100)
- `--output, -o`: Output file for detailed results (CSV format)
- `--file, -f`: File containing list of targets
### Examples
Scan a single IP:
```bash
sentinelssh 192.168.1.1
```
Scan a domain:
```bash
sentinelssh example.com
```
Scan multiple targets:
```bash
sentinelssh example.com 192.168.1.1 10.0.0.1
```
Scan targets from a file:
```bash
sentinelssh -f targets.txt
```
Save results to a CSV file:
```bash
sentinelssh -o results.csv 192.168.1.1 example.com
```
Custom port and higher concurrency:
```bash
sentinelssh --port 2222 --concurrency 200 192.168.1.0/24
```
## Features
- Targeted CVE-2024-6387 detection
- Support for IP addresses, domain names, and CIDR ranges
- High-speed concurrent scanning
- Comprehensive version analysis
- Detailed, color-coded console output
- CSV export for further analysis
- Customizable scan parameters
## License
This project is licensed under the MIT License - see the [LICENSE](LICENSE) file for details.
## Contributing
Contributions are welcome! Please feel free to submit a Pull Request.
文件快照
[4.0K] /data/pocs/85986d740854a408bee776f4d4ed053932bc913d
├── [4.0K] cmd
│ └── [4.0K] sentinelssh
│ └── [4.7K] main.go
├── [ 173] go.mod
├── [4.6K] go.sum
├── [4.0K] internal
│ ├── [4.0K] analyzer
│ │ └── [1.2K] analyzer.go
│ ├── [4.0K] scanner
│ │ └── [1002] scanner.go
│ └── [4.0K] utils
│ └── [ 905] utils.go
├── [1.0K] LICENSE
├── [4.0K] pkg
│ └── [4.0K] models
│ └── [ 115] result.go
└── [1.8K] README.md
8 directories, 9 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。