Nmap vs ssh-audit
GitHub Stats
About Nmap
Nmap (Network Mapper) is a free and open-source utility for network discovery and security auditing. It uses raw IP packets to determine available hosts, services, operating systems, packet filters/firewalls, and dozens of other characteristics. It was designed to rapidly scan large networks but works fine against single hosts. Nmap's scripting engine (NSE) allows users to write and share scripts to automate networking tasks, from vulnerability detection to backdoor discovery. It's used by security professionals, system administrators, and researchers worldwide.
About ssh-audit
ssh-audit is a comprehensive SSH server and client configuration auditing tool that analyzes key exchange algorithms, host key types, encryption ciphers, MAC algorithms, and other security-relevant parameters. It identifies vulnerabilities, deprecated algorithms, and configuration weaknesses by comparing the target's SSH implementation against known security advisories and best practices. System administrators, compliance auditors, and penetration testers use ssh-audit to verify that SSH deployments meet security baselines and do not expose weak or compromised cryptographic algorithms. The tool provides color-coded output with clear pass/fail indicators for each algorithm and supports auditing both SSH servers and client configurations across all major SSH implementations.
Platform Support
Tags
Nmap only
ssh-audit only