id: ssh-weak-mac-algo info: name: SSH Weak MAC Algorithms Enabled author: pussycat0x severity: low description: | The system's SSH configuration poses a security risk by allowing weak Message Authentication Code (MAC) algorithms, potentially exposing it to vulnerabilities and unauthorized access. It is crucial to update and strengthen the MAC algorithms for enhanced security. reference: - https://www.tenable.com/plugins/nessus/71049 metadata: verified: true shodan-query: product:"OpenSSH" tags: javascript,ssh,misconfig,network javascript: - code: | let m = require("nuclei/ssh"); let c = m.SSHClient(); let response = c.ConnectSSHInfoMode(Host, Port); to_json(response); args: Host: "{{Host}}" Port: "22" matchers-condition: and matchers: - type: word words: - "server_to_client_macs" - "client_to_server_macs" condition: and - type: word words: - "hmac-md5" - "hmac-md5-96" - "hmac-sha1-96" - "hmac-md5" - "hmac-md5-96" - "hmac-sha1-96" condition: or # digest: 4b0a00483046022100bcf4f0fab95dfe893fd775ae252db5402e5906f11ff00d60983ecc7d6d4c4d37022100a1d41e8316e61cd29489f922bb9352f1d4e4c3761862837e8fa2b26d0b9a348e:922c64590222798bb761d5b6d8e72950