awesome-repositories.com
ब्लॉग
awesome-repositories.com

AI-संचालित खोज के साथ बेहतरीन ओपन-सोर्स रिपॉजिटरी खोजें।

एक्सप्लोर करेंक्यूरेटेड खोजेंओपन-सोर्स विकल्पसेल्फ-होस्टेड सॉफ्टवेयरब्लॉगसाइटमैप
प्रोजेक्टहमारे बारे मेंहम रैंकिंग कैसे करते हैंप्रेसMCP सर्वर
कानूनीगोपनीयताशर्तें
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·
ssh-mitm avatar

ssh-mitm/ssh-mitm

0
View on GitHub↗
1,457 स्टार्स·155 फोर्क्स·Python·GPL-3.0·4 व्यूज़docs.ssh-mitm.at↗

Ssh Mitm

This project is a transparent proxy framework designed for the interception, analysis, and manipulation of secure shell traffic. By terminating client and server connections independently, it provides full visibility into encrypted sessions, allowing for the monitoring of authentication flows, file transfers, and command execution in real time.

The tool distinguishes itself through a modular, plugin-based architecture that enables users to inject custom interception logic into the proxy workflow. It supports the creation of ephemeral environments and mock agents in memory, facilitating the simulation of security scenarios and the testing of authentication robustness without requiring external infrastructure.

The framework covers a broad capability surface, including the auditing of client security behavior, the capture of authentication credentials, and the inspection of encapsulated network protocols such as tunnels and remote management operations. It also provides operational controls for managing concurrent sessions and maintaining session parity through terminal signal forwarding.

Features

  • Transparent Interception Proxies - Terminates client and server connections independently to provide full visibility into encrypted session data and authentication flows.
  • Man-in-the-Middle Frameworks - Terminates client and server connections independently to provide full visibility into encrypted session data and authentication flows.
  • Traffic Proxying and Interception - Acts as a modular tool for intercepting and modifying secure shell traffic, including file transfers and network tunnels.
  • Proxy Security Auditors - Serves as a transparent proxy for auditing authentication flows and client security behavior in real time.
  • Interception Proxies - Inspects and manipulates authentication flows to capture credentials or force interactive fallbacks.
  • Authentication Testing - Probes remote servers and simulates client responses to evaluate the robustness of authentication methods and multi-factor security.
  • SSH Security Tools - Analyzes client and server authentication behavior to identify vulnerabilities and weak configurations in remote access implementations.
  • Tunneling and Proxying - Enables remote port forwarding and proxy jump capabilities to facilitate complex network traversal.
  • NETCONF Subsystem Interceptions - Provides real-time inspection and modification of NETCONF operations within secure shell tunnels.
  • SSH Session Simulations - Facilitates testing of authentication robustness by simulating SSH environments entirely in memory.
  • Interception Proxies - Intercepts file transfers to store copies or replace files on the fly during active sessions.
  • Traffic Protocol Inspection - Parses and manipulates encapsulated data streams including network tunnels, file transfers, and terminal output during active sessions.
  • Application-Layer Protocol Inspections - Captures and parses encapsulated traffic like NETCONF, SOCKS tunnels, and file transfers within secure shell connections.
  • Authentication Credential Captures - Intercepts passwords and public key authentication attempts to audit how sensitive credentials are handled.
  • Bypass Testing - Exploits authentication negotiation vulnerabilities to circumvent hardware-based security requirements during testing.
  • Authentication Method Auditing - Probes remote servers for supported authentication methods and validates public keys to identify security misconfigurations.
  • Client Behavior Auditing - Identifies potential vulnerabilities in authentication handling by analyzing how clients respond to manipulated server responses.
  • Multi-Factor Authentication Bypass Testing - Intercepts authentication requests to establish sessions using basic credentials, bypassing hardware-based multi-factor confirmations.
  • Encapsulated Traffic Inspection - Captures and inspects TCP tunnels, SOCKS forwarding, and remote command sessions to monitor encapsulated communications.
  • Session Auditing - Decrypts and displays live terminal output while logging command execution and state transitions for security auditing.
  • SSH Agent Forwarding - Utilizes forwarded authentication agents to establish connections to remote servers after session interception.
  • Host Key Auto-Generators - Supports multiple host key algorithms and persists generated keys to maintain consistent server identity.
  • Vulnerability Analysis - Evaluates connecting software security by observing key negotiation and protocol behaviors to detect implementation weaknesses.
  • Security Testing and Auditing - Examines negotiation behavior during connection attempts to identify known vulnerabilities and security weaknesses in remote session software.
  • Asynchronous Session Management - Manages concurrent sessions as asynchronous coroutines to ensure stable performance during high-volume traffic analysis.
  • Plugin-Based Extensibility - Enables developers to inject custom interception logic and automated responses into the proxy workflow through modular plugins.
  • Live User Session Mirroring - Mirrors active sessions to enable real-time monitoring and command injection while remaining transparent to the user.

स्टार हिस्ट्री

ssh-mitm/ssh-mitm के लिए स्टार हिस्ट्री चार्टssh-mitm/ssh-mitm के लिए स्टार हिस्ट्री चार्ट

AI सर्च

और अधिक बेहतरीन रिपॉजिटरी खोजें

अपनी ज़रूरत को सरल भाषा में बताएं — AI हजारों क्यूरेटेड ओपन-सोर्स प्रोजेक्ट्स को प्रासंगिकता के आधार पर रैंक करता है।

Start searching with AI

Ssh Mitm को शामिल करने वाली क्यूरेटेड खोजें

चुनिंदा कलेक्शन जहाँ Ssh Mitm दिखाई देता है।
  • Man-in-the-Middle नेटवर्क सिक्योरिटी टूलकिट्स

अक्सर पूछे जाने वाले प्रश्न

ssh-mitm/ssh-mitm क्या करता है?

This project is a transparent proxy framework designed for the interception, analysis, and manipulation of secure shell traffic. By terminating client and server connections independently, it provides full visibility into encrypted sessions, allowing for the monitoring of authentication flows, file transfers, and command execution in real time.

ssh-mitm/ssh-mitm की मुख्य विशेषताएं क्या हैं?

ssh-mitm/ssh-mitm की मुख्य विशेषताएं हैं: Transparent Interception Proxies, Man-in-the-Middle Frameworks, Traffic Proxying and Interception, Proxy Security Auditors, Interception Proxies, Authentication Testing, SSH Security Tools, Tunneling and Proxying।

ssh-mitm/ssh-mitm के कुछ ओपन-सोर्स विकल्प क्या हैं?

ssh-mitm/ssh-mitm के ओपन-सोर्स विकल्पों में शामिल हैं: voorivex/pentest-guide — This project is a comprehensive web application penetration testing guide and vulnerability research framework. It… kgretzky/evilginx2 — Evilginx2 is a man-in-the-middle phishing framework designed to proxy authentication traffic between a user and a… andresriancho/w3af — w3af is a web penetration testing suite and security audit framework designed to identify and exploit vulnerabilities… wifiphisher/wifiphisher — Wifiphisher is a modular security framework designed for wireless penetration testing and social engineering auditing.… reqable/reqable-app — Reqable is a cross-platform network debugging tool that functions as an HTTP/HTTPS debugging proxy, a REST API client,… oisf/suricata — Suricata is an open-source network intrusion detection and prevention engine that analyzes live network traffic in…

Ssh Mitm के ओपन-सोर्स विकल्प

समान ओपन-सोर्स प्रोजेक्ट्स, जो Ssh Mitm के साथ साझा की गई सुविधाओं के आधार पर रैंक किए गए हैं।
  • voorivex/pentest-guideVoorivex का अवतार

    Voorivex/pentest-guide

    2,761GitHub पर देखें↗

    This project is a comprehensive web application penetration testing guide and vulnerability research framework. It provides a structured methodology for identifying and exploiting security flaws through a phased approach involving reconnaissance, analysis, and exploitation. The resource is distinguished by its use of a curated methodology framework that links theoretical vulnerability patterns to real-world bug bounty reports and historical exploit examples. It includes a payload-based testing library and a reference system that maps specific vulnerability categories to recommended third-part

    bugbountybypassowasp-tests
    GitHub पर देखें↗2,761
  • kgretzky/evilginx2kgretzky का अवतार

    kgretzky/evilginx2

    14,627GitHub पर देखें↗

    Evilginx2 is a man-in-the-middle phishing framework designed to proxy authentication traffic between a user and a target web service. By acting as a reverse proxy, the tool intercepts and relays web requests to capture credentials and session tokens in real time, enabling the bypass of multi-factor authentication mechanisms through session cookie hijacking. The platform distinguishes itself by integrating infrastructure orchestration with modular template-driven content injection. It automates the deployment of proxy servers, manages the lifecycle of encryption certificates, and applies conte

    Go
    GitHub पर देखें↗14,627
  • andresriancho/w3afandresriancho का अवतार

    andresriancho/w3af

    4,850GitHub पर देखें↗

    w3af is a web penetration testing suite and security audit framework designed to identify and exploit vulnerabilities in web applications. It functions as a vulnerability scanner that crawls targets to find injection points and a fuzzer used to discover hidden endpoints and test input validation. The project distinguishes itself by providing an intercepting HTTP proxy for capturing and modifying traffic, combined with a knowledge-base driven exploitation system. It enables the execution of security exploits to gain remote shell access and supports post-exploitation activities, such as routing

    Pythonappseccross-site-scriptingscanner
    GitHub पर देखें↗4,850
  • wifiphisher/wifiphisherwifiphisher का अवतार

    wifiphisher/wifiphisher

    14,631GitHub पर देखें↗

    Wifiphisher is a modular security framework designed for wireless penetration testing and social engineering auditing. It functions as a platform for security professionals to assess the resilience of Wi-Fi networks by simulating unauthorized access, performing man-in-the-middle interceptions, and executing credential-harvesting scenarios. The tool distinguishes itself through its ability to combine rogue access point deployment with dynamic phishing interfaces. By forcing wireless clients to associate with deceptive infrastructure, the framework can capture network metadata and inject it int

    Pythonaccess-pointattackmalware
    GitHub पर देखें↗14,631
  • Ssh Mitm के सभी 30 विकल्प देखें→