fluidasserts.proto.ssh module

This module allows to check SSH vulnerabilities.

fluidasserts.proto.ssh.PORT = 22
fluidasserts.proto.ssh.is_cbc_used(host, port=22, username=None, password=None)

Check if SSH has CBC algorithms enabled.

Parameters
  • host (str) – Address to test.

  • port (int) – If necessary, specify port to connect to.

  • username (Optional[str]) – Username.

  • password (Optional[str]) – Password.

Return type

bool

fluidasserts.proto.ssh.is_hmac_used(host, port=22, username=None, password=None)

Check if SSH has weak HMAC algorithms enabled.

Parameters
  • host (str) – Address to test.

  • port (int) – If necessary, specify port to connect to.

  • username (Optional[str]) – Username.

  • password (Optional[str]) – Password.

Return type

bool

fluidasserts.proto.ssh.is_version_visible(ip_address, port=22)

Check if banner is visible.

Parameters
  • ip_address (str) – IP address to test.

  • port (int) – If necessary, specify port to connect to (default: 22).

Return type

bool