ssh-audit is a useful tool for auditing the configuration of SSH servers and clients. It supports both SSH1 and SSH2 protocols and can analyze various aspects such as key-exchange algorithms, encryption algorithms, message authentication code algorithms, and more. The tool provides information on the security of the algorithms used and makes recommendations for improving the configuration. It also includes features like server and client standard audits, policy audits, and the ability to create custom policies. The tool runs on Linux and Windows and is compatible with Python versions 3.7 to 3.11. Pre-built packages are available for different platforms, and a web front-end is also provided for convenience. The tool has regular updates and releases, with the latest version including bug fixes, improvements, and additions to supported algorithms and policies.
https://github.com/jtesta/ssh-audit