https://github.com/mrmtwoj/cve-2024-6387
regreSSHion is a security tool designed to test for vulnerabilities related to CVE-2024-6387, specifically focusing on SSH and remote access exploitation.
https://github.com/mrmtwoj/cve-2024-6387
cve-2024-6387 cve-2024-6387-checker openssh openssh-key poc regresshion-cve-2024-6387-ssh-security
Last synced: 11 months ago
JSON representation
regreSSHion is a security tool designed to test for vulnerabilities related to CVE-2024-6387, specifically focusing on SSH and remote access exploitation.
- Host: GitHub
- URL: https://github.com/mrmtwoj/cve-2024-6387
- Owner: mrmtwoj
- Created: 2024-07-09T14:06:02.000Z (almost 2 years ago)
- Default Branch: main
- Last Pushed: 2024-07-09T14:29:30.000Z (almost 2 years ago)
- Last Synced: 2024-12-29T23:54:11.952Z (over 1 year ago)
- Topics: cve-2024-6387, cve-2024-6387-checker, openssh, openssh-key, poc, regresshion-cve-2024-6387-ssh-security
- Language: Python
- Homepage: https://acyber.ir
- Size: 5.86 KB
- Stars: 0
- Watchers: 1
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Project Information
Name Project :
POC - CVE-2024-6387 - Scanner
Last version :1.0.0
Last updated : 09/07/2024
Programming language : Python
Company name : acyber (IT Security Lab Iran)
CVE-2024-6387
regreSSHion, CVE-2024-6387, is an unauthenticated remote code execution in OpenSSH’s server (sshd) that grants full root access. It affects the default configuration and does not require user interaction. It poses a significant exploit risk.
About OpenSSH?
OpenSSH is a suite of secure networking utilities based on the SSH protocol that are essential for secure communication over unsecured networks. It provides robust encryption, secure file transfers, and remote server management. OpenSSH is widely used on Unix-like systems, including macOS and Linux, and it supports various encryption technologies and enforces robust access controls. Despite a recent vulnerability, OpenSSH maintains a strong security record, exemplifying a defense-in-depth approach and a critical tool for maintaining network communication confidentiality and integrity worldwide.
# Contacts
- Author : Mohamamd javad Joshani Disfani (mr.mtwoj)
- Linkedin : https://ir.linkedin.com/in/joshani
- E-Mail : mr.mtwoj@gmail.com
- Website : www.acyber.ir
- Twitter : @mrmtwoj
- Github : https://github.com/mrmtwoj/CVE-2024-6387