Metasploit-framework: SSH modules writing to ~/.ssh/known_hosts

Created on 6 Jul 2018  路  3Comments  路  Source: rapid7/metasploit-framework

This has been annoying me for quite some time.

  1. Run an SSH module
  2. See that it wrote to ~/.ssh/known_hosts
  3. Get angry because you just used a scanner

Note that the cargo-culted SSH options hash we use already disables config and agent.

bug library module newbie-friendly
Source
picture wvu-r7
👍2

Most helpful comment

I'll also add that if you are testing multiple networks on an engagement with overlapping IP ranges, you will get a silent failure for ssh_login if there is a server ssh key mismatch. That's always annoyed the hell out of me.

picture h00die on 6 Jul 2018
👍2

All 3 comments

I'll also add that if you are testing multiple networks on an engagement with overlapping IP ranges, you will get a silent failure for ssh_login if there is a server ssh key mismatch. That's always annoyed the hell out of me.

h00die picture h00die on 6 Jul 2018
👍2

Patch submitted @wvu-r7

kkirsche picture kkirsche on 14 Aug 2018

Hooray!

wvu-r7 picture wvu-r7 on 16 Aug 2018
Was this page helpful?
0 / 5 - 0 ratings

Related issues

XSecr3t picture XSecr3t  路  3Comments
idetest41 picture idetest41  路  3Comments
Acidical picture Acidical  路  3Comments
Sonya2010 picture Sonya2010  路  3Comments
mdisec picture mdisec  路  3Comments