6-4 vulnerability exploitation SSH banner information acquisition

nmap obtain ssh Banner Information

nmap -sV -p 22 IP Address 

commonly , We ssh stay 22 Port 1 is running

After the detection is completed , There will be banner Information , Corresponding to the remote system release ubuntu, And version number

nmap -sV -p 22 192.168.0.104

We made changes before , So he won't detect the remote system banner Information

Let's revise it back , Then detect

cd /etc/ssh/
sudo gedit sshd_config

ctrl+f, Input banner

ad locum , We will

debianBanner no

Comment out , preservation , Click Close

service ssh restart

To restart ssh service , This configuration will take effect

We go back to kali among , Re detect

nmap -sV -p 22 192.168.0.104

You can see the banner The information is different

Metasploit obtain ssh Banner Information

use auxiliary/scanner/ssh/ssh_version
show options
set rhosts 192.168.0.104
run

After detection , The corresponding banner Information , Our operating system and running version number

msfconsole
//metasploit It will start as a terminal 

metasploit It is an integrated vulnerability development and utilization , A framework for permission maintenance , So it has a lot to load , The speed at which it starts , It will naturally , A lot slower

nc obtain ssh Banner Information

Actually , We can also use small tools to get the corresponding Banner Information

nc IP Address  22

If ssh Open other ports , We 22 Port no. , It can be changed to the default port

For the operating system , We can take some protective measures , Make our server not appear , Corresponding Banner Information , Operating system and category

To configure ssh avoid Banner Information

stay ssh The configuration file sshd_config Add a new line .DebianBanner no Scan again and find no operating system information .

nmap -p 22 -sV 192.168.0.104

In this way , Evaded our Banner Information , Caught , So as to obtain the operation ssh The operating system of the service