Does this skill provide guidance on SSH hardening?

Yes, it includes a dedicated configuration auditing phase that identifies weak MACs, ciphers, and algorithms, providing specific hardening recommendations.

What tools does this SSH penetration testing skill use?

The skill integrates workflows for industry-standard tools including Nmap, Hydra, Medusa, ssh-audit, Metasploit, and the Paramiko Python library.

Are credential attacks like brute-forcing included?

Yes, the skill covers methodologies for username enumeration, password spraying, and multi-threaded brute-forcing while providing tips for evasion and rate-limiting.

Can I use this skill for network pivoting?

Absolutely. It contains detailed documentation and command structures for local, remote, and dynamic port forwarding to assist in network pivoting.

Does it support testing for specific OpenSSH vulnerabilities?

It provides exploitation patterns for common CVEs such as username enumeration (CVE-2018-15473) and other known SSH service vulnerabilities.

SSH Penetration Testing

Name: SSH Penetration Testing
Author: boisenoise

byboisenoise

セキュリティとテスト

Conducts comprehensive security assessments of SSH services including enumeration, credential attacks, and vulnerability exploitation.

概要

The SSH Penetration Testing skill provides a complete methodology for auditing and exploiting SSH service security. It guides users through every critical phase of an assessment, from initial service discovery and banner grabbing to advanced configuration auditing with tools like ssh-audit. It includes specialized patterns for credential brute-forcing with Hydra and Medusa, key-based authentication testing, and identified vulnerability exploitation for known OpenSSH CVEs. Additionally, it provides detailed workflows for network pivoting via local, remote, and dynamic SSH tunneling, making it an essential tool for security professionals and system administrators.

主な機能

Comprehensive SSH service discovery and banner enumeration patterns
Pivoting techniques using local, remote, and dynamic SOCKS proxy tunneling
0 GitHub stars
Detailed configuration auditing for weak ciphers and key exchange algorithms
Advanced credential attack strategies including brute-force and password spraying
Automated SSH security scripting templates using Python and Paramiko

ユースケース

Performing formal security audits and compliance checks on server infrastructure
Executing network pivoting and lateral movement during authorized penetration tests
Identifying and remediating misconfigured SSH services or deprecated protocols

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add boisenoise/skills-collections antigravity-ssh-penetration-testing

For use in Claude.ai and ChatGPT

Download Skill

GitHub

概要