Nmap Development mailing list archives
Re: Request for ssh dumps
From: Brandon Enright <bmenrigh () ucsd edu>
Date: Thu, 9 Jul 2009 21:34:47 +0000
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu, 09 Jul 2009 08:58:05 +0300 ithilgore <ithilgore.ryu.l () gmail com> wrote:
Brandon Enright wrote:If you give me the command(s) you want me to run against a /16 (or three) I'll get them started tonight. Otherwise I'll work on this tomorrow. Brandon Sent from my phone. If you would like a digital signature for this email let me know and I will sign it later.Thanks Brandon. I haven't finished the ssh module completely yet, so there are still some pending issues. However, the dumps don't need to be acquired using Ncrack as a client. Any ssh client will do (I assume alsmost everyone is using openssh though). I just want to see if there are any issues from the server side. For example, OpenSSH sent the final SSH2_MSG_NEWKEYS message embedded in the final Diffie-Helman GEX reply and this caused some problems (which I am currently fixing), whereas dropbear sent the 2 messages as 2 separate packets. -- ithilgore
Okay so I was going to give you a packet capture of each of our SSH
hosts but 1) we have too many, 2) only a few would be useful, and, 3)
I'd prefer to anonymize it a little.
At the end of this email are all of the SSH versions we have that Nmap
detects. If you see anything fancy you want a capture of, email me or
hit me up on AIM:bmenrigh or XMPP:bmenrigh () chat ucsd edu and I'll get
you more info.
Brandon
$ egrep '^22\/tcp[[:space:]]+open[[:space:]]+ssh[[:space:]]' ssh_version.nmap | sort | uniq -c | sort -nr
1058 22/tcp open ssh Cisco SSH 1.25 (protocol 2.0)
689 22/tcp open ssh OpenSSH 5.1 (protocol 2.0)
596 22/tcp open ssh OpenSSH 4.3 (protocol 2.0)
357 22/tcp open ssh OpenSSH 5.1 (protocol 1.99)
307 22/tcp open ssh OpenSSH 3.9p1 (protocol 1.99)
208 22/tcp open ssh OpenSSH 3.9p1 (protocol 2.0)
153 22/tcp open ssh OpenSSH 4.3 (protocol 1.99)
130 22/tcp open ssh Cisco SSH 1.25 (protocol 1.99)
127 22/tcp open ssh OpenSSH 4.7p1 Debian 8ubuntu1.2 (protocol 2.0)
118 22/tcp open ssh OpenSSH 4.5 (protocol 1.99)
90 22/tcp open ssh OpenSSH 5.1p1 Debian 5ubuntu1 (protocol 2.0)
87 22/tcp open ssh SunSSH 1.1 (protocol 2.0)
78 22/tcp open ssh OpenSSH 4.5 (protocol 2.0)
75 22/tcp open ssh OpenSSH 4.7 (protocol 2.0)
61 22/tcp open ssh OpenSSH 3.6.1p2 (protocol 1.99)
54 22/tcp open ssh SunSSH 1.1.1 (protocol 2.0)
51 22/tcp open ssh OpenSSH 5.1p1 Debian 3ubuntu1 (protocol 2.0)
44 22/tcp open ssh OpenSSH 3.6.1p2 (protocol 2.0)
40 22/tcp open ssh OpenSSH 4.0 (protocol 2.0)
37 22/tcp open ssh OpenSSH 4.6 (protocol 1.99)
35 22/tcp open ssh OpenSSH 5.1p1 Debian 5 (protocol 2.0)
32 22/tcp open ssh OpenSSH 5.0 (protocol 2.0)
32 22/tcp open ssh OpenSSH 3.8.1p1 (protocol 2.0)
27 22/tcp open ssh SCS sshd 3.2.3 (protocol 2.0)
25 22/tcp open ssh OpenSSH 4.6 (protocol 2.0)
24 22/tcp open ssh OpenSSH 5.2 (protocol 2.0)
24 22/tcp open ssh OpenSSH 4.3p2 Debian 9etch3 (protocol 2.0)
21 22/tcp open ssh OpenSSH 4.2 (protocol 1.99)
20 22/tcp open ssh OpenSSH 5.2 (protocol 1.99)
20 22/tcp open ssh OpenSSH 4.4 (protocol 1.99)
18 22/tcp open ssh OpenSSH 3.5p1 (protocol 1.99)
15 22/tcp open ssh OpenSSH 4.1 (protocol 2.0)
13 22/tcp open ssh OpenSSH 5.0 (protocol 1.99)
13 22/tcp open ssh OpenSSH 4.7 (protocol 1.99)
13 22/tcp open ssh OpenSSH 4.4 (protocol 2.0)
11 22/tcp open ssh OpenSSH 4.5p1 (FreeBSD 20061110; protocol 2.0)
11 22/tcp open ssh OpenSSH 3.8.1p1 (protocol 1.99)
11 22/tcp open ssh OpenSSH 3.4p1+CAN-2004-0175 (protocol 1.99)
10 22/tcp open ssh SunSSH 1.0.1 (protocol 2.0)
10 22/tcp open ssh OpenSSH 4.6p1 Debian 5ubuntu0.6 (protocol 2.0)
10 22/tcp open ssh OpenSSH 4.2 (protocol 2.0)
10 22/tcp open ssh OpenSSH 3.4p1 (protocol 1.99)
9 22/tcp open ssh SCS sshd 3.2.0 (protocol 2.0)
8 22/tcp open ssh OpenSSH 3.7.1p2 (protocol 1.99)
8 22/tcp open ssh OpenSSH 3.4p1 Debian 1:3.4p1-1.woody.3 (protocol 2.0)
7 22/tcp open ssh SCS sshd 3.2.9.1 (protocol 2.0)
7 22/tcp open ssh OpenSSH 5.1p1 Debian 5+b1 (protocol 2.0)
7 22/tcp open ssh OpenSSH 5.1p1 (FreeBSD 20080901; protocol 2.0)
7 22/tcp open ssh OpenSSH 3.8 (protocol 1.99)
7 22/tcp open ssh Cisco SSH 1.25 (protocol 1.5)
7 22/tcp open ssh (protocol 2.0)
6 22/tcp open ssh SCS sshd 4.0.4.12 (protocol 2.0)
6 22/tcp open ssh OpenSSH 4.6p1 Debian 5ubuntu0.5 (protocol 2.0)
6 22/tcp open ssh OpenSSH 4.2p1 Debian 7ubuntu3.1 (protocol 2.0)
5 22/tcp open ssh SunSSH 1.0 (protocol 2.0)
5 22/tcp open ssh OpenSSH 4.3p2 Debian 9 (protocol 2.0)
5 22/tcp open ssh OpenSSH 4.3p2 Debian 8ubuntu1.5 (protocol 2.0)
5 22/tcp open ssh OpenSSH 4.3p2 Debian 8ubuntu1.4 (protocol 2.0)
5 22/tcp open ssh OpenSSH 4.1 (protocol 1.99)
5 22/tcp open ssh OpenSSH 3.8.1p1 Debian 8.sarge.6 (protocol 2.0)
5 22/tcp open ssh OpenSSH 3.8.1p1 Debian 8.sarge.4 (protocol 2.0)
5 22/tcp open ssh DesktopAuthority OpenSSH 3.8 (DesktopAuthority 6.0.201; protocol 2.0)
4 22/tcp open ssh SCS sshd 3.2.9.1 (protocol 1.99)
4 22/tcp open ssh OpenSSH 4.6p1 Debian 5build1 (protocol 2.0)
4 22/tcp open ssh OpenSSH 4.3p2 Debian 6 (protocol 2.0)
4 22/tcp open ssh OpenSSH 4.3p2 Debian 5ubuntu1 (protocol 2.0)
4 22/tcp open ssh HP Integrated Lights Out mpSSH 0.0.1 (protocol 2.0)
4 22/tcp open ssh Dropbear sshd 0.43 (protocol 2.0)
4 22/tcp open ssh Cisco VPN Concentrator SSHd (protocol 1.5)
4 22/tcp open ssh (protocol 1.99)
3 22/tcp open ssh WeOnlyDo sshd 2.1.0 (protocol 2.0)
3 22/tcp open ssh WeOnlyDo sshd 2.0.6 (protocol 2.0)
3 22/tcp open ssh SCS sshd 3.2.2 (protocol 2.0)
3 22/tcp open ssh OpenSSH 5.1p1 Debian 3 (protocol 2.0)
3 22/tcp open ssh OpenSSH 4.6p1 (protocol 1.99)
3 22/tcp open ssh OpenSSH 4.3p2 Debian 9etch2 (protocol 2.0)
3 22/tcp open ssh OpenSSH 4.2p1 Debian 7ubuntu3.5 (protocol 2.0)
3 22/tcp open ssh OpenSSH 3.9p1 NCSA_GSSAPI_20040818 KRB5 (protocol 2.0)
3 22/tcp open ssh OpenSSH 3.7p1 (protocol 2.0)
3 22/tcp open ssh OpenSSH 3.7.1p2 (protocol 2.0)
3 22/tcp open ssh OpenSSH 3.7.1p1 (protocol 1.99)
3 22/tcp open ssh OpenSSH 3.4p1 (protocol 2.0)
3 22/tcp open ssh OpenSSH 3.1p1 (protocol 1.99)
3 22/tcp open ssh APC AOS cryptlib sshd (protocol 1.99)
2 22/tcp open ssh lshd secure shell 2.0.4 (protocol 2.0)
2 22/tcp open ssh SCS sshd 3.2.5 (protocol 2.0)
2 22/tcp open ssh SCS sshd 3.2.2 (protocol 1.99)
2 22/tcp open ssh OpenSSH 5.0p1+sftpfilecontrol-v1.2-hpn13v1 (protocol 2.0)
2 22/tcp open ssh OpenSSH 4.7p1 Debian 8ubuntu1.2 (protocol 1.99)
2 22/tcp open ssh OpenSSH 4.7 (RemotelyAnywhere 8.0.747; protocol 2.0)
2 22/tcp open ssh OpenSSH 4.7 (RemotelyAnywhere 8.0.668; protocol 2.0)
2 22/tcp open ssh OpenSSH 4.6p1 Debian 5ubuntu0.1 (protocol 2.0)
2 22/tcp open ssh OpenSSH 4.5p1 (FreeBSD 20061110; protocol 1.99)
2 22/tcp open ssh OpenSSH 4.3p2-hpn12v9 (protocol 2.0)
2 22/tcp open ssh OpenSSH 4.3p2-hpn (protocol 2.0)
2 22/tcp open ssh OpenSSH 4.3p2 Debian 8ubuntu1 (protocol 2.0)
2 22/tcp open ssh OpenSSH 4.3p2 Debian 5ubuntu1.2 (protocol 2.0)
2 22/tcp open ssh OpenSSH 3.9 (protocol 2.0)
2 22/tcp open ssh OpenSSH 3.8p1 (protocol 2.0)
2 22/tcp open ssh OpenSSH 3.6.1p1+CAN-2004-0175 (protocol 1.99)
2 22/tcp open ssh OpenSSH 3.6.1p1 (protocol 2.0)
2 22/tcp open ssh OpenSSH 3.6.1p1 (protocol 1.99)
2 22/tcp open ssh OpenSSH 3.1p1 (protocol 2.0)
2 22/tcp open ssh Dropbear sshd 0.49 (protocol 2.0)
2 22/tcp open ssh Dropbear sshd 0.48 (protocol 2.0)
2 22/tcp open ssh CoreFTP sshd 0.1.2 (protocol 2.0)
2 22/tcp open ssh APC AOS cryptlib sshd (protocol 2.0)
1 22/tcp open ssh WeOnlyDo sshd 2.3.6.165 (protocol 2.0)
1 22/tcp open ssh WeOnlyDo sshd 2.1.8.98 (protocol 2.0)
1 22/tcp open ssh WeOnlyDo sshd 2.0.3 (protocol 2.0)
1 22/tcp open ssh SunSSH 1.2 (protocol 2.0)
1 22/tcp open ssh SrSshServer 1.00 (sshlib 1.82; protocol 2.0)
1 22/tcp open ssh SCS sshd 3.0.1 (protocol 2.0)
1 22/tcp open ssh SCS sshd 2.2.0 (protocol 1.99)
1 22/tcp open ssh OpenSSH 5.1p1-hpn13v5 (protocol 2.0)
1 22/tcp open ssh OpenSSH 5.1p1 Debian 2 (protocol 2.0)
1 22/tcp open ssh OpenSSH 5.0 (protocol 1.5)
1 22/tcp open ssh OpenSSH 4.7p1-hpn13v1 (protocol 2.0)
1 22/tcp open ssh OpenSSH 4.7p1 Debian 8ubuntu1 (protocol 2.0)
1 22/tcp open ssh OpenSSH 4.7p1 Debian 8 (protocol 2.0)
1 22/tcp open ssh OpenSSH 4.6p1 Debian 5ubuntu0.4 (protocol 2.0)
1 22/tcp open ssh OpenSSH 4.3p2-6-cern-hpn (protocol 1.99)
1 22/tcp open ssh OpenSSH 4.3p2-4-cern-hpn (protocol 1.99)
1 22/tcp open ssh OpenSSH 4.3p2 Debian 9etch3 (protocol 1.99)
1 22/tcp open ssh OpenSSH 4.3p2 Debian 9etch2 (protocol 1.99)
1 22/tcp open ssh OpenSSH 4.3p2 Debian 9etch1 (protocol 2.0)
1 22/tcp open ssh OpenSSH 4.3p2 Debian 8ubuntu1.1 (protocol 2.0)
1 22/tcp open ssh OpenSSH 4.3p2 Debian 8 (protocol 1.99)
1 22/tcp open ssh OpenSSH 4.3p2 Debian 5~bpo.1.netgear1 (protocol 2.0)
1 22/tcp open ssh OpenSSH 4.3p2 (protocol 1.99)
1 22/tcp open ssh OpenSSH 4.3 (RemotelyAnywhere 7.10.552; protocol 2.0)
1 22/tcp open ssh OpenSSH 4.3 (RemotelyAnywhere 7.01.541; protocol 2.0)
1 22/tcp open ssh OpenSSH 4.3 (RemotelyAnywhere 7.00.531; protocol 2.0)
1 22/tcp open ssh OpenSSH 4.2p1 Debian 7ubuntu3.4 (protocol 2.0)
1 22/tcp open ssh OpenSSH 4.2p1 Debian 7ubuntu3 (protocol 2.0)
1 22/tcp open ssh OpenSSH 4.2p1 (FreeBSD 20060930; protocol 2.0)
1 22/tcp open ssh OpenSSH 4.2p1 (FreeBSD 20060930; protocol 1.99)
1 22/tcp open ssh OpenSSH 4.2p1 (FreeBSD 20050903; protocol 2.0)
1 22/tcp open ssh OpenSSH 4.1p1 Debian 7ubuntu4 (protocol 2.0)
1 22/tcp open ssh OpenSSH 4.0 (protocol 1.99)
1 22/tcp open ssh OpenSSH 4.0 (RemotelyAnywhere 6.20.467; protocol 2.0)
1 22/tcp open ssh OpenSSH 3.9p1 NCSA_GSSAPI_20040818 KRB5 (protocol 1.99)
1 22/tcp open ssh OpenSSH 3.8.1p1 (FreeBSD 20040419; protocol 2.0)
1 22/tcp open ssh OpenSSH 3.7.1p3 (protocol 1.99)
1 22/tcp open ssh OpenSSH 3.6.1p1+CAN-2004-0175 (protocol 2.0)
1 22/tcp open ssh OpenSSH 3.5p1 (FreeBSD 20030924; protocol 2.0)
1 22/tcp open ssh OpenSSH 3.5p1 (FreeBSD 20030924; protocol 1.99)
1 22/tcp open ssh OpenSSH 3.4 (protocol 2.0)
1 22/tcp open ssh HP Integrated Lights Out mpSSH 0.1.0 (protocol 2.0)
1 22/tcp open ssh Dropbear sshd 0.44test4 (protocol 2.0)
1 22/tcp open ssh DesktopAuthority OpenSSH 3.8 (DesktopAuthority 5.55.030; protocol 2.0)
1 22/tcp open ssh DesktopAuthority OpenSSH 3.8 (DesktopAuthority 5.32.002; protocol 2.0)
1 22/tcp open ssh DesktopAuthority OpenSSH 3.8 (DesktopAuthority 5.31.429; protocol 2.0)
1 22/tcp open ssh Dell PowerConnect sshd (protocol 1.5)
1 22/tcp open ssh Cisco CSS SSH (Unlicensed)
1 22/tcp open ssh Bitvise WinSSHD 4.26 (sshlib 1.82; protocol 2.0)
1 22/tcp open ssh Bitvise WinSSHD 4.21 (sshlib 1.82; protocol 2.0)
1 22/tcp open ssh Bitvise WinSSHD 4.18 (sshlib 1.81; protocol 2.0)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.11 (GNU/Linux)
iEYEARECAAYFAkpWYn8ACgkQqaGPzAsl94IAbQCgnFWVtLbnX7/8c9n9uc6DL63I
qHkAniOe7oDyeJQbHUJTTzO7YG0vIv7n
=Ho3n
-----END PGP SIGNATURE-----
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org
Current thread:
- Request for ssh dumps ithilgore (Jul 08)
- Re: Request for ssh dumps Brandon Enright (Jul 08)
- Re: Request for ssh dumps ithilgore (Jul 08)
- Re: Request for ssh dumps Luis M. (Jul 09)
- Re: Request for ssh dumps ithilgore (Jul 09)
- Re: Request for ssh dumps Brandon Enright (Jul 09)
- Re: Request for ssh dumps ithilgore (Jul 08)
- Re: Request for ssh dumps Brandon Enright (Jul 08)