THE DFIR BLOG
Menu

Blog

SSH (Secure shell) Primer & Attacks

7/2/2019

 
I use SSH Command Pretty much everyday. Just want to share some basics of SSH here in my blog
  • It’s a communication Protocol
  • Traffic is encrypted unlike telnet (Telnet is not encrypted) 
  • SSH is the client and SSHD is there server ( Open SSH Daemon)
  • SSHD sits and listen for SSH Connection 
  • SSHD config file for security hardening
# Authentication Methods:
Command:> ssh [email protected] 
  • Password
  • Public/Private Key Pair (Recommended way)
  • Host based - file known host

# Generating Keys 
Command:>  ssh-keygen 
  • ~/.ssh/id_rsa (Private Key)
  • ~/.ssh/id_rsa.pub (Public Key)
Public key goes into server “Authorized_keys” file 

# Invalidate SSH certificates?
  • ssh-add -D

Comments are closed.

    Subscribe to Newsletter

    Mac Forensics
    Windows Forensics
    Forensic Tools

    Categories

    All
    Attack
    Bash
    Bigdata
    CISSP
    Corporate
    Ctf
    Data
    Digital Forensics
    Docker
    EDR
    Forensics
    Hacking
    Hadoop
    HDFS
    Health Care
    Linux
    Memory
    Network
    Network Forensics
    PCIP
    SQL
    Windows
    Wireshark

    Archives

    August 2024
    July 2024
    January 2023
    October 2019
    September 2019
    July 2019
    June 2019
    May 2019
    March 2019
    April 2018
    March 2018
    February 2018
    July 2017
    June 2017
    May 2017
    November 2015
    October 2015
    July 2015
    June 2015
    May 2015
    April 2015
    March 2015

    RSS Feed

  • Infosec
  • Mac Forensics
  • Windows Forensics
  • Linux Forensics
  • Memory Forensics
  • Incident Response
  • Blog
  • About Me
  • Infosec
  • Mac Forensics
  • Windows Forensics
  • Linux Forensics
  • Memory Forensics
  • Incident Response
  • Blog
  • About Me