Skip to content

Instantly share code, notes, and snippets.

@imran-parray

imran-parray/regreSSHion.yaml

Created July 2, 2024 03:59
Show Gist options
  • Save imran-parray/954ab42a3f8e6920eea17a61cbf558a9 to your computer and use it in GitHub Desktop.
Save imran-parray/954ab42a3f8e6920eea17a61cbf558a9 to your computer and use it in GitHub Desktop.
Download ZIP
Quick #regreSSHion checker (based on software version) for #nuclei CVE-2024-6387
Raw
regreSSHion.yaml
id: CVE-2024-6387
info:
name: RegreSSHion detect (based on software version)
author: UnaPibaGeek
severity: High
description: Regression (CVE-2024-6387) software version checker.
classification:
cve-id: CVE-2024-6387
metadata:
max-request: 2
vendor: OpenSSH
product: OpenSSH
tags: cve,cve2024,regresshion,openssh,ssh
tcp:
- host:
- '{{Hostname}}'
- '{{Host}}:22'
inputs:
- data: "SSH-2.0-OpenSSH_9.0\r\n"
matchers:
- type: regex
part: body
regex:
- 'OpenSSH_(8\.[5-9]p?[12]?|9\.[0-7]p?[12]?|[0-3]\.[0-9]p?[12]?|4\.[0-3]p?[12]?)'
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment