nuclei-templates/network/misconfig/dropbear-weakalgo.yaml

id: dropbear-weakalgo

info:
  name: Dropbear sshd Weak Key Exchange Algorithms Enabled
  author: pussycat0x
  severity: low
  description: |
    The SSH key exchange algorithm is fundamental to keep the protocol secure. It is what allows two previously unknown parties to generate a shared key in plain sight, and have that secret remain private to the client and server. Over time, some implementations of this algorithm have been identified as weak or vulnerable.
  reference: |
    https://www.virtuesecurity.com/kb/ssh-weak-key-exchange-algorithms-enabled
  remediation: |
    Disable the weak algorithms.
  metadata:
    max-request: 1
    shodan-query: product:"Dropbear sshd"
    verified: true
  tags: network,ssh,dropbear,misconfig

tcp:
  - inputs:
      - data: "\n"

    host:
      - "{{Hostname}}"
    port: 22

    matchers:
      - type: word
        words:
          - "diffie-hellman-group-exchange-sha1"
          - "diffie-hellman-group1-sha1"
        condition: or
# digest: 4a0a00473045022100c67a648de03e7a12d40987111db58dbe3c171939915e2f6c252204426551ad18022008ace27d961d279e82a266d8528612dd10fda1a23346679b3063892ba540ef48:922c64590222798bb761d5b6d8e72950
Update and rename network/detection/dropbear-weakalgo-detect.yaml to network/misconfig/dropbear-weakalgo.yaml 2022-11-26 16:18:17 +00:00			`id: dropbear-weakalgo`
Add files via upload 2022-11-22 18:28:59 +00:00
			`info:`
Update and rename network/detection/dropbear-weakalgo-detect.yaml to network/misconfig/dropbear-weakalgo.yaml 2022-11-26 16:18:17 +00:00			`name: Dropbear sshd Weak Key Exchange Algorithms Enabled`
Add files via upload 2022-11-22 18:28:59 +00:00			`author: pussycat0x`
			`severity: low`
			`description: \|`
			`The SSH key exchange algorithm is fundamental to keep the protocol secure. It is what allows two previously unknown parties to generate a shared key in plain sight, and have that secret remain private to the client and server. Over time, some implementations of this algorithm have been identified as weak or vulnerable.`
TemplateMan Update [Mon Apr 8 11:30:07 UTC 2024] :robot: 2024-04-08 11:30:07 +00:00			`reference: \|`
			`https://www.virtuesecurity.com/kb/ssh-weak-key-exchange-algorithms-enabled`
Revert "TemplateMan Update [Mon Apr 8 11:30:07 UTC 2024] :robot:" This reverts commit 433dda4ae5b824564b44075bb95a96ecdbe263a6. 2024-04-08 11:34:33 +00:00			`remediation: \|`
			`Disable the weak algorithms.`
Add files via upload 2022-11-22 18:28:59 +00:00			`metadata:`
TemplateMan Update [Wed Sep 27 13:29:58 UTC 2023] :robot: 2023-09-27 13:29:58 +00:00			`max-request: 1`
			`shodan-query: product:"Dropbear sshd"`
Revert "TemplateMan Update [Mon Apr 8 11:30:07 UTC 2024] :robot:" This reverts commit 433dda4ae5b824564b44075bb95a96ecdbe263a6. 2024-04-08 11:34:33 +00:00			`verified: true`
			`tags: network,ssh,dropbear,misconfig`

Refactoring the directory structure based on protocols (#7137) * moving http templates * updated cves.json * moved network CVEs * updated scripts * updated workflows * updated requests to http * replaced network to tcp --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-04-27 04:28:59 +00:00			`tcp:`
Add files via upload 2022-11-22 18:28:59 +00:00			`- inputs:`
			`- data: "\n"`
Update dropbear-weakalgo-detect.yaml 2022-11-24 18:33:45 +00:00
Add files via upload 2022-11-22 18:28:59 +00:00			`host:`
			`- "{{Hostname}}"`
removed duplicate network request 2023-09-16 19:35:21 +00:00			`port: 22`
Update dropbear-weakalgo-detect.yaml 2022-11-24 18:33:45 +00:00
Add files via upload 2022-11-22 18:28:59 +00:00			`matchers:`
			`- type: word`
			`words:`
			`- "diffie-hellman-group-exchange-sha1"`
			`- "diffie-hellman-group1-sha1"`
			`condition: or`
Auto Template Signing [Thu Oct 19 13:13:50 UTC 2023] :robot: 2023-10-19 13:13:52 +00:00			`# digest: 4a0a00473045022100c67a648de03e7a12d40987111db58dbe3c171939915e2f6c252204426551ad18022008ace27d961d279e82a266d8528612dd10fda1a23346679b3063892ba540ef48:922c64590222798bb761d5b6d8e72950`