CVE-2018-15473

This is a functional exploit for CVE-2018-15473, an OpenSSH username enumeration vulnerability. It uses malformed SSH packets to determine valid usernames by exploiting timing differences in authentication responses.

This repository contains a Python script for enumerating valid usernames on OpenSSH servers (versions 2.3 to 7.4) by exploiting CVE-2018-15473. The script sends malformed packets to determine if a username exists based on the server's response behavior.

This PoC exploits CVE-2018-15473, a user enumeration vulnerability in OpenSSH through 7.7, by sending malformed SSH2_MSG_USERAUTH_REQUEST packets to determine valid usernames. It uses Paramiko for SSH communication and monkey-patching to manipulate packet handling.

This PoC exploits CVE-2018-15473, an SSH username enumeration vulnerability in OpenSSH versions 2.3 to 7.7. It manipulates SSH packet handling to distinguish between valid and invalid usernames by malforming the MSG_SERVICE_ACCEPT packet.

This PoC exploits CVE-2018-15473, a username enumeration vulnerability in OpenSSH 7.7 and earlier. It sends malformed packets to determine if a username exists by observing the server's response behavior.

This repository contains Python3 scripts for exploiting CVE-2018-15473, an OpenSSH user enumeration vulnerability. The scripts manipulate SSH protocol packets to determine valid usernames without authentication.

This PoC exploits CVE-2018-15473 (SSH user enumeration via timing attack) by measuring authentication response times to distinguish valid from invalid usernames. It uses Paramiko to interact with the SSH daemon and statistical analysis to determine user existence.

This repository contains a working PoC for CVE-2018-15473, an OpenSSH user enumeration vulnerability. The tool exploits a timing-based flaw to verify valid usernames on a target system and includes additional features like port scanning and fingerprinting.

This PoC exploits CVE-2018-15473, a username enumeration vulnerability in OpenSSH versions < 7.7. It uses malformed SSH packets to determine valid usernames and optionally attempts authentication with username/username credentials.

This repository contains a network scanner toolkit with SSH exploitation capabilities, specifically targeting CVE-2018-15473 for username enumeration. It includes features for network reconnaissance, SSH security assessment, and advanced evasion techniques.

This exploit leverages CVE-2018-15473 to enumerate valid SSH usernames by manipulating the SSH authentication packet structure. It uses a modified Paramiko library to send malformed packets and distinguish between valid and invalid usernames based on the server's response.

This repository provides a Docker setup to test pentest tools against CVE-2018-15473, a vulnerability in OpenSSH. It includes a docker-compose configuration but lacks actual exploit code or detailed instructions.

This repository contains a minimal setup for a vulnerable Docker container related to CVE-2018-15473, but lacks actual exploit code. The main.sh script only initializes and runs SSH in a loop, which is insufficient for demonstrating the vulnerability.

This repository contains a functional Python script that exploits CVE-2018-15473, an OpenSSH user enumeration vulnerability. The script uses a monkey-patched Paramiko library to send malformed SSH2_MSG_USERAUTH_REQUEST packets, allowing detection of valid usernames based on the server's response.

This PoC exploits CVE-2018-15473, an SSH user enumeration vulnerability in OpenSSH. It manipulates Paramiko's packet handling to malform boolean values, allowing detection of valid usernames via authentication responses.

This PoC exploits CVE-2018-15473, an SSH username enumeration vulnerability in OpenSSH. It manipulates the Paramiko library to malform packets and determine username validity based on server responses.

This repository contains a PoC for CVE-2018-15473, an OpenSSH username enumeration vulnerability affecting versions <7.7. The exploit leverages a timing-based side-channel to determine valid usernames by manipulating SSH authentication responses.

This PoC exploits CVE-2018-15473, an OpenSSH username enumeration vulnerability affecting versions <7.7. It malforms SSH packets to distinguish between valid and invalid usernames by manipulating Paramiko's packet handling.

This PoC exploits CVE-2018-15473, a username enumeration vulnerability in OpenSSH versions < 7.7. It malforms SSH packets to determine valid usernames by analyzing authentication responses.

This repository contains a Python-based exploit for CVE-2018-15473, which targets OpenSSH versions < 7.7 to enumerate valid usernames via a timing attack. It also includes tools for SNMP community string testing, though the primary focus is on the SSH username enumeration exploit.

This repository contains a collection of security tools, including subdomain enumeration (sublist3r), service scanning (masscan), and SSH brute-forcing. It does not contain a direct exploit for CVE-2018-15473 but includes tools that could be used in reconnaissance phases.

The repository contains only a README.md file with a CVE identifier and no exploit code or technical details. It appears to be a placeholder or incomplete submission.

This PoC exploits CVE-2018-15473, an OpenSSH user enumeration vulnerability, by sending malformed SSH2_MSG_USERAUTH_REQUEST packets to determine valid usernames. It uses Paramiko for SSH communication and monkey-patching to manipulate packet handling.

This repository contains a Python-based exploit for CVE-2018-15473, an SSH user enumeration vulnerability. The exploit manipulates SSH packet handling to determine valid usernames without authentication. It includes a script to fetch SSH servers from Shodan and test them against a username wordlist.

This repository contains a bash script that scans SSH servers for password-based authentication and checks for the SSH user enumeration vulnerability (CVE-2018-15473). It uses a modified version of an existing exploit to identify vulnerable systems.

This repository contains a Python-based exploit for CVE-2018-15473, which targets OpenSSH versions < 7.7 to enumerate valid usernames via a timing attack. The exploit uses Paramiko to manipulate SSH packets and includes both original and simplified versions with modern compatibility fixes.

This repository contains a functional exploit for CVE-2018-15473, an OpenSSH username enumeration vulnerability. The exploit uses malformed SSH packets to determine valid usernames on the target system by analyzing authentication responses.

This repository contains a functional exploit for CVE-2018-15473, an OpenSSH username enumeration vulnerability. The exploit manipulates SSH packet handling to determine valid usernames by exploiting a timing difference in authentication responses.

This PoC exploits CVE-2018-15473, an authentication bypass vulnerability in OpenSSH, by manipulating the SSH message handling to enumerate valid usernames without proper authentication.

This is a functional PoC for CVE-2018-15473, an OpenSSH username enumeration vulnerability. It exploits a timing discrepancy in SSH authentication responses to determine valid usernames by sending malformed packets.

This PoC exploits CVE-2018-15473, an authentication bypass vulnerability in OpenSSH, by manipulating SSH message handling to enumerate valid usernames. It uses Paramiko to malform packets and trigger authentication errors for invalid users.

This repository contains a functional Python3 exploit for CVE-2018-15473, which allows SSH username enumeration by manipulating the SSH authentication process. The exploit leverages a timing and response discrepancy in OpenSSH versions 2.3 to 7.7 to distinguish valid from invalid usernames.

This repository provides a containerized lab environment to demonstrate CVE-2018-15473, an OpenSSH user enumeration vulnerability. It includes a Dockerfile to build a vulnerable OpenSSH 7.7p1 instance and scripts to run the lab locally.

This Perl script exploits CVE-2018-15473, an OpenSSH user enumeration vulnerability, by sending a malformed SSH2_MSG_USERAUTH_REQUEST packet to determine valid usernames based on error responses. It hooks into Net::SSH::Perl to manipulate packet handling and detect integrity errors.

This repository contains a functional PoC for CVE-2018-15473, an OpenSSH username enumeration vulnerability. It includes scripts to test and exploit the flaw by malforming SSH packets to determine valid usernames on the target system.

This PoC exploits CVE-2018-15473, an OpenSSH user enumeration vulnerability, by sending malformed SSH2_MSG_USERAUTH_REQUEST packets to determine valid usernames. It uses Paramiko with a monkey patch to trigger the flaw and supports multi-threaded wordlist attacks.

This PoC exploits CVE-2018-15473, a user enumeration vulnerability in OpenSSH <= 7.7. It leverages a timing-based attack by sending malformed SSH2_MSG_USERAUTH_REQUEST packets to determine valid usernames without authentication.

This PoC exploits CVE-2018-15473, a user enumeration vulnerability in OpenSSH through 7.7, by sending malformed authentication packets to determine valid usernames based on server responses. It supports single-user checks and wordlist-based enumeration.

This repository contains a Python script and a Bash script that exploit CVE-2018-15473 to enumerate valid SSH usernames on OpenSSH servers by analyzing authentication responses. The scripts use a public key authentication bypass technique and parallel processing for efficiency.

This PoC exploits CVE-2018-15473, an OpenSSH user enumeration vulnerability, by attempting authentication with invalid passwords and analyzing server responses to determine valid usernames.

This repository contains a Python script for SSH user enumeration via timing differences and authentication responses, exploiting CVE-2018-15473 in vulnerable OpenSSH versions (≤ 7.7). It uses Paramiko to measure response times and determine likely valid/invalid users.

The repository contains two Python scripts that exploit CVE-2018-15473, an SSH user enumeration vulnerability. The first script checks if a target is vulnerable, while the second enumerates valid users by leveraging the flaw in OpenSSH's authentication mechanism.

This PoC automates user enumeration for CVE-2018-15473 by leveraging a dictionary attack against an SSH service. It integrates with an external script (45939.py) to test each username for validity.

This PoC exploits CVE-2018-15473, an OpenSSH username enumeration vulnerability, by manipulating Paramiko's message handling to distinguish valid from invalid users via timing and error responses. It supports single-user and wordlist-based enumeration with colored console output.

This PoC exploits CVE-2018-15473, an SSH user enumeration vulnerability in OpenSSH. It manipulates the paramiko library to malform packets and determine valid usernames by analyzing authentication responses.

This Metasploit module enumerates SSH users via malformed packet or timing attack techniques, targeting OpenSSH vulnerabilities (CVE-2003-0190, CVE-2006-5229, CVE-2016-6210, CVE-2018-15473). It exploits differences in response times or error messages to distinguish valid from invalid usernames.

This exploit leverages a timing-based vulnerability in OpenSSH versions prior to 7.7 to enumerate valid usernames by malforming SSH packets during authentication. It uses Paramiko to manipulate packet handling and detect differences in server responses.

This script exploits CVE-2018-15473, an authentication bypass vulnerability in OpenSSH, by manipulating the SSH message handling to determine valid usernames without proper authentication. It uses Paramiko to interact with the SSH server and checks for username validity based on the server's response.

This exploit leverages a malformed SSH packet to enumerate valid usernames on a target system by manipulating Paramiko's message handling. It exploits CVE-2018-15473, which allows user enumeration due to differences in error responses.