Open-source man-in-the-middle SSH proxy for security audits and penetration testing.
Intercepts live SSH sessions in real time — credentials, keys, file transfers, and tunnels.
SSH-MITM was used to discover 6 previously unknown vulnerabilities in widely-deployed SSH software:
| CVE | Software | Description |
|---|---|---|
| CVE-2021-36367 | PuTTY | FIDO2 hardware token phishing via SSH proxy |
| CVE-2021-36368 | OpenSSH | Trivial authentication enables FIDO2 bypass |
| CVE-2021-36369 | Dropbear | Trivial authentication |
| CVE-2021-36370 | MobaXterm | Trivial authentication |
| CVE-2022-38336 | MobaXterm | Credential disclosure |
| CVE-2022-38337 | MobaXterm | Credential disclosure |