Andris Raugulis

This software helps to adjust `KexAlgorithms`, `Ciphers` and `MACs` section in Your `sshd_config`. If You copy/pasted configuration from Mozilla guidelines, then just adjust it afterwards, according to ssh-audit output. Current...

Yes, sorry, forgot about `HostKey` and `HostKeyAlgorithms` settings in `sshd_config`. To get rid of this warning, You could remove `HostKey /etc/ssh/ssh_host_ecdsa_key` line or adjust `HostKeyAlgorithms`. Can You verify that this...

For the second question, - short answer is "no". All one could add, one can see in "recommendations" section. Longer answer - ciphers are hard-coded into source of particular sshd...

Could You elaborate? NMap's greppable output is deprecated and, personally, seems clumsy. What's wrong with current output? Or could You give me an example, what kind of output You would...

Bulk scans are one of my goals. I am not sure about output format, though. If one does bulk scan and output is JSON/XML/CSV or other format, one would still...

@besamelsosu, I have started to implement it myself (some code refactoring parts are already in `develop` branch), it's more a question of output structure. If You have some thoughts the...

@besamelsosu sure, replied.

I completely agree and this is **already planned**. Currently, it's implemented for SSH1 (see screenshot in #12), but it's missing some details for SSH2, because it requires successful key-exchange.

Do You have more information, e.g., where they originate from?

`Banner` in `sshd_config` is something different than exception regarding "banner". Even by default it is `none`. Exception is regarding identification string, e.g., `SSH-2.0-OpenSSH_7.5...`. I can agree that wording could be...