Posted January 8, 2015 Guys can you please help me out. I want to research on Malware that have a capability of breaking SSH by any means like Man in middle attack, brusteforce , dict attack, timing analysis etc. Please can you post few malware names which can compromise SSH v1 or v2 by any means. 0 Share this post Link to post Share on other sites
Posted January 8, 2015 If anyone is still running an old implementation of SSHv1, then all of these still apply: http://www3.physnet.uni-hamburg.de/physnet/security/vulnerability/SSH_vulnerabilities.html Not sure how common SSHv1 servers "in the wild" are. 0 Share this post Link to post Share on other sites
Posted January 8, 2015 This page I have read already. I just want to know like names of malwares which has capability to crack ssh in various ways like MITM or dict attack. Like zbot, ebury rootkit have those feature to use bruteforce. 0 Share this post Link to post Share on other sites
Posted January 8, 2015 There are probably general login bruteforce/dictionary attack guides out there for canned tools like those found with Kali Linux, but you're not going to find some magic tool to MitM someone with SSH. The nature of SSH's public key cryptography should raise warning flags to anyone connecting to a malicious SSH server unless you've somehow obtained the target server's private keys. 0 Share this post Link to post Share on other sites