SSH user enumeration 04-13-2021, 10:42 AM
#1
Hi,
I found an IP address and i run an nmap scan on it, which revealed that it has the port 22 open. I want to access it, but i don't know the user and password for the ssh. It has an older version of ssh, version SSH-2.0-OpenSSH_7.2p2 which is known to be vulnerable to user enumeration hack. I found the script https://www.exploit-db.com/exploits/45233 here, but after i compile the code it says that paramiko is not available. I used Kali linux. Every help would be awesome. I even used metasploit too (ssh_enumers), but idk if that's the same thing...
I found an IP address and i run an nmap scan on it, which revealed that it has the port 22 open. I want to access it, but i don't know the user and password for the ssh. It has an older version of ssh, version SSH-2.0-OpenSSH_7.2p2 which is known to be vulnerable to user enumeration hack. I found the script https://www.exploit-db.com/exploits/45233 here, but after i compile the code it says that paramiko is not available. I used Kali linux. Every help would be awesome. I even used metasploit too (ssh_enumers), but idk if that's the same thing...