Script ssh2-enum-algos

Script types: portrule
Categories: safe, discovery
Download: https://svn.nmap.org/nmap/scripts/ssh2-enum-algos.nse

Script Summary

Reports the number of algorithms (for encryption, compression, etc.) that the target SSH2 server offers. If verbosity is set, the offered algorithms are each listed by type.

If the "client to server" and "server to client" algorithm lists are identical (order specifies preference) then the list is shown only once under a combined type.

Example Usage

nmap --script ssh2-enum-algos target

Script Output

PORT   STATE SERVICE
22/tcp open  ssh
| ssh2-enum-algos:
|   kex_algorithms (4)
|       diffie-hellman-group-exchange-sha256
|       diffie-hellman-group-exchange-sha1
|       diffie-hellman-group14-sha1
|       diffie-hellman-group1-sha1
|   server_host_key_algorithms (2)
|       ssh-rsa
|       ssh-dss
|   encryption_algorithms (13)
|       aes128-ctr
|       aes192-ctr
|       aes256-ctr
|       arcfour256
|       arcfour128
|       aes128-cbc
|       3des-cbc
|       blowfish-cbc
|       cast128-cbc
|       aes192-cbc
|       aes256-cbc
|       arcfour
|       rijndael-cbc@lysator.liu.se
|   mac_algorithms (6)
|       hmac-md5
|       hmac-sha1
|       hmac-ripemd160
|       hmac-ripemd160@openssh.com
|       hmac-sha1-96
|       hmac-md5-96
|   compression_algorithms (2)
|       none
|_      zlib@openssh.com

Requires


Author:

  • Kris Katterjohn

License: Same as Nmap--See https://nmap.org/book/man-legal.html