search for: byt3bl33d3r

...is considered an Information Disclosure error, because SSHD shouldn't disclose OS Version information to clients. REPLICATE: Run CrackMapExec against OpenSSH_7.4p1 Raspbian-10+deb9u7 with a command like the following: ./cme --verbose ssh -u pi --port 2322 192.168.0.10 CrackMapExec(github.com/byt3bl33d3r/CrackMapExec) uses the paramiko library(github.com/paramiko/paramiko) to dectect SSH version. If you traceback the output of CME, you'll find that it's just paramiko "reading a line from the socket" and parsing it to get the version information. -- You are receiving this mail b...