{"id":18811250,"url":"https://github.com/mrmtwoj/cve-2024-6387","last_synced_at":"2025-08-05T22:17:35.488Z","repository":{"id":247606477,"uuid":"826336009","full_name":"mrmtwoj/CVE-2024-6387","owner":"mrmtwoj","description":"regreSSHion is a security tool designed to test for vulnerabilities related to CVE-2024-6387, specifically focusing on SSH and remote access exploitation. ","archived":false,"fork":false,"pushed_at":"2024-07-09T14:29:30.000Z","size":6,"stargazers_count":0,"open_issues_count":0,"forks_count":1,"subscribers_count":1,"default_branch":"main","last_synced_at":"2024-12-29T23:54:11.952Z","etag":null,"topics":["cve-2024-6387","cve-2024-6387-checker","openssh","openssh-key","poc","regresshion-cve-2024-6387-ssh-security"],"latest_commit_sha":null,"homepage":"https://acyber.ir","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/mrmtwoj.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-07-09T14:06:02.000Z","updated_at":"2024-10-07T04:02:49.000Z","dependencies_parsed_at":"2024-07-09T17:57:30.310Z","dependency_job_id":"033214f1-57c7-4c00-8155-ac5ed54752d5","html_url":"https://github.com/mrmtwoj/CVE-2024-6387","commit_stats":null,"previous_names":["mrmtwoj/cve-2024-6387"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mrmtwoj%2FCVE-2024-6387","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mrmtwoj%2FCVE-2024-6387/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mrmtwoj%2FCVE-2024-6387/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mrmtwoj%2FCVE-2024-6387/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/mrmtwoj","download_url":"https://codeload.github.com/mrmtwoj/CVE-2024-6387/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":239748254,"owners_count":19690232,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cve-2024-6387","cve-2024-6387-checker","openssh","openssh-key","poc","regresshion-cve-2024-6387-ssh-security"],"created_at":"2024-11-07T23:25:19.451Z","updated_at":"2025-02-19T22:42:40.531Z","avatar_url":"https://github.com/mrmtwoj.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Project Information\n\u003cp\u003e\u003cb\u003e\u003ch6\u003eName Project :\u003c/b\u003ePOC - CVE-2024-6387 - Scanner\u003c/p\u003e\n\u003cp\u003e\u003cb\u003eLast version  :\u003c/b\u003e1.0.0\u003c/p\u003e\n\u003cp\u003e\u003cb\u003eLast updated :\u003c/b\u003e 09/07/2024\u003c/p\u003e\n\u003cp\u003e\u003cb\u003eProgramming language :\u003c/b\u003e Python\u003c/p\u003e\n\u003cp\u003e\u003cb\u003eCompany name : \u003c/b\u003e\u003ca target=\"_black\" href=\"http://acyber.ir\"\u003eacyber\u003c/a\u003e (IT Security Lab Iran)\u003c/p\u003e\u003c/h6\u003e\n\u003ch4\u003eCVE-2024-6387\u003c/h4\u003e\n\u003cp\u003e\nregreSSHion, CVE-2024-6387, is an unauthenticated remote code execution in OpenSSH’s server (sshd) that grants full root access. It affects the default configuration and does not require user interaction. It poses a significant exploit risk.\n\u003cbr\u003e\n\u003ch4\u003eAbout OpenSSH?\u003c/h4\u003e\nOpenSSH is a suite of secure networking utilities based on the SSH protocol that are essential for secure communication over unsecured networks. It provides robust encryption, secure file transfers, and remote server management. OpenSSH is widely used on Unix-like systems, including macOS and Linux, and it supports various encryption technologies and enforces robust access controls. Despite a recent vulnerability, OpenSSH maintains a strong security record, exemplifying a defense-in-depth approach and a critical tool for maintaining network communication confidentiality and integrity worldwide.\n\u003c/p\u003e\n\n\n# Contacts\n\u003cul\u003e\n\u003cli\u003e   Author      :   Mohamamd javad Joshani Disfani (mr.mtwoj)\n\u003cli\u003e   Linkedin    :   https://ir.linkedin.com/in/joshani\n\u003cli\u003e   E-Mail      :   mr.mtwoj@gmail.com\n\u003cli\u003e   Website     :   www.acyber.ir\n\u003cli\u003e   Twitter     :   \u003ca href=\"https://twitter.com/MrMtwoj\"\u003e@mrmtwoj\u003c/a\u003e\n\u003cli\u003e   Github      :   https://github.com/mrmtwoj/CVE-2024-6387\n\u003c/ul\u003e\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmrmtwoj%2Fcve-2024-6387","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmrmtwoj%2Fcve-2024-6387","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmrmtwoj%2Fcve-2024-6387/lists"}