Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [NSE] find-ssh-hostkey script

From: David Fifield <david () bamsoftware com>
Date: Wed, 27 Apr 2011 16:22:14 -0700
On Tue, Mar 08, 2011 at 04:45:43PM +0000, Nick Nikolaou wrote:

Hey everyone,

Attached is a script I wrote that attempts to identify a host given its SSH
hostkey as an argument. I got the idea from Fyodor's presentation

--@usage
-- nmap --script=find-ssh-hostkey --script-args
fingerprint=AB:CD:EF:AB:CD:EF:AB:CD:EF:AB:CD:EF:AB:CD:AB:CD
--
--@output
-- 22/tcp  open  ssh
-- |_find-ssh-hostkey: Key found.


After (limited) testing it seems to work. I don't have access to many
machines running SSH so I can't test it thoroughly.

The script name can be confusing seems it's very similar to other scripts
that show the host's SSH key so feel free to change it to something more
meaningful.


Thanks for this script, Nick. I think it's too limited to be generally
useful, though--if you're going to grep the output for "Key found"
couldn't you grep for the key fingerprint directly?

David Fifield
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: