ssh_scan 0.0.12 → 0.0.13

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: b867e5547d76b9e5bc2e8a0c1ce270cab73bef6c
-  data.tar.gz: 54c41d85a8812ae534bc630bdfa9440de378d678
+  metadata.gz: 33f1febf216b8836861940688f4da101debe78cc
+  data.tar.gz: 2b0661596cfd440cbb46c7abac8b3de76443b906
 SHA512:
-  metadata.gz: 6e8dd4fb26ac72a0788ae854bdab6a47f6b44aade1a7c3be17a9798352a52013a5bc115f586fec2b65550cf158bd3b927cb4b0be93d2683339a251d4b5eccd5f
-  data.tar.gz: 9b0a263260c8b1a5c0396f359e7f70f435fe3ddf04a168646d62c674fef23689b1b265f1514610193380f34dec3f45cee3aa475ed003c2fc9b12a995bb2261b9
+  metadata.gz: ddd8614a94d51f8e0f77c1c82fff0a480634de65a35f6fb30b1969282c81f1b9c035649e47d66f717421f34c6257364cbb77327cbe8495cbd27ea65dd9fa74ea
+  data.tar.gz: 4cffdf417580c5e11dc7b7e6b7ad17e6014c0cc31f02728728e9f317ecec0d295cb7f46f1045b4fac0b5c0c38a59062f0e441bbbf851a1c88c39be9f18eb3ade

data/README.md

@@ -3,6 +3,8 @@
 [![Build Status](https://secure.travis-ci.org/mozilla/ssh_scan.png)](http://travis-ci.org/mozilla/ssh_scan)
 [![Code Climate](https://codeclimate.com/github/mozilla/ssh_scan.png)](https://codeclimate.com/github/mozilla/ssh_scan)
 [![Gem Version](https://badge.fury.io/rb/ssh_scan.svg)](https://badge.fury.io/rb/ssh_scan)
+[![Join the chat at https://gitter.im/mozilla-ssh_scan/Lobby](https://badges.gitter.im/Join%20Chat.svg)](https://gitter.im/mozilla-ssh_scan/Lobby?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge&utm_content=badge)
+
 
 A SSH configuration and policy scanner
 
@@ -71,6 +73,8 @@ Run `ssh_scan -h` to get this
         -u, --unit-test [FILE]           Throw appropriate exit codes based on compliance status
         -v, --version                    Display just version info
         -h, --help                       Show this message
+        -L, --logger[Log File Path]      Enable logger and set the log file
+        -V, --verbosity                  Set the logger level (Params: INFO, DEBUG, WARN, ERROR, FATAL)
 
     Examples:
 
@@ -82,6 +86,7 @@ Run `ssh_scan -h` to get this
       ssh_scan -o output.json
       ssh_scan -O output.json -o rescan_output.json
       ssh_scan -t 192.168.1.1 -p 22222
+      ssh_scan -t 192.168.1.1 -p 22222 -L output.log -V INFO
       ssh_scan -t 192.168.1.1 -P custom_policy.yml
       ssh_scan -t 192.168.1.1 --unit-test -P custom_policy.yml
 

data/bin/ssh_scan

@@ -7,6 +7,7 @@ require 'json'
 require 'netaddr'
 require 'optparse'
 require 'ssh_scan'
+require 'logger'
 
 #Default options
 options = {
@@ -15,6 +16,8 @@ options = {
   :unit_test => false,
   :timeout => 2,
   :threads => 5,
+  :verbosity => nil,
+  :logger => Logger.new(STDERR),
 }
 
 target_parser = SSHScan::TargetParser.new()
@@ -24,9 +27,10 @@ opt_parser = OptionParser.new do |opts|
                 "Usage: ssh_scan [options]"
 
   opts.on("-t", "--target [IP/Range/Hostname]", Array,
-          "IP/Ranges/Hostname to scan") do |ips|
-    ips.each do |ip|
-      options[:sockets] += target_parser.enumerateIPRange(ip)
+          "IP/Ranges/Hostname to scan") do |sockets|
+    sockets.each do |socket|
+      ip, port = socket.chomp.split(':')
+      options[:sockets] += target_parser.enumerateIPRange(ip, port)
     end
   end
 
@@ -39,7 +43,6 @@ opt_parser = OptionParser.new do |opts|
     File.open(file).each do |line|
       line.chomp.split(',').each do |socket|
         ip, port = socket.chomp.split(':')
-        port = port.nil? ? 22 : port
         options[:sockets] += target_parser.enumerateIPRange(ip, port)
       end
     end
@@ -50,6 +53,15 @@ opt_parser = OptionParser.new do |opts|
     options[:timeout] = timeout.to_i
   end
 
+  opts.on("-L", "--logger [Log File Path]",
+          "Enable logger") do |log_file|
+    if log_file.nil?
+      options[:logger] = Logger.new(STDERR)
+    else
+      options[:logger] = Logger.new $stdout.reopen(log_file, "w")
+    end
+  end
+
   opts.on("-O", "--from_json [FilePath]",
           "File to read JSON output from") do |file|
     unless File.exists?(file)
@@ -69,11 +81,20 @@ opt_parser = OptionParser.new do |opts|
     $stdout.reopen(file, "w")
   end
 
-  opts.on("-p", "--port [PORT]",
-          "Port (Default: 22)") do |port|
-    socket = options[:sockets].shift
-    ip = socket.chomp.split(':').shift
-    options[:sockets] += target_parser.enumerateIPRange(ip, port)
+  opts.on("-p", "--port [PORT]", Array,
+          "Port (Default: 22)") do |ports|
+    temp = []
+    options[:sockets].each do |socket|
+      ports.each do |port|
+        ip, old_port = socket.chomp.split(':')
+        if !old_port.nil?
+          puts "Specifying port simultaneously with -t and -p is not allowed. Please fix this and try again"
+          exit 1
+        end
+        temp += target_parser.enumerateIPRange(ip, port)
+      end
+    end
+    options[:sockets] = temp
   end
 
   opts.on("-P", "--policy [FILE]",
@@ -91,6 +112,20 @@ opt_parser = OptionParser.new do |opts|
     options[:unit_test] = true
   end
 
+  opts.on("-V", "--verbosity",
+          "Set the logger level (Accpeted Params: INFO, DEBUG, WARN, ERROR, FATAL)") do |verbosity|
+    options[:logger].level = case options[:verbosity]
+      when "INFO" then Logger::INFO
+      when "DEBUG" then Logger::DEBUG
+      when "WARN" then Logger::WARN
+      when "ERROR" then Logger::ERROR
+      when "FATAL" then Logger::FATAL
+      else
+        puts "Can't convert #{options[:verbosity]} to any of the Logger level constants"
+        exit
+    end
+  end
+
   opts.on("-v", "--version",
           "Display just version info") do
     puts SSHScan::VERSION
@@ -108,6 +143,7 @@ opt_parser = OptionParser.new do |opts|
     puts "  ssh_scan -o output.json"
     puts "  ssh_scan -O output.json -o rescan_output.json"
     puts "  ssh_scan -t 192.168.1.1 -p 22222"
+    puts "  ssh_scan -t 192.168.1.1 -p 22222 -L output.log -V INFO"
     puts "  ssh_scan -t 192.168.1.1 -P custom_policy.yml"
     puts "  ssh_scan -t 192.168.1.1 --unit-test -P custom_policy.yml"
     puts ""

data/lib/ssh_scan/banner.rb

@@ -8,7 +8,7 @@ module SSHScan
     end
 
     def self.read(string)
-      return SSHScan::Banner.new(string.chomp)
+      return SSHScan::Banner.new(string)
     end
 
     def ssh_version()
@@ -25,6 +25,14 @@ module SSHScan
         return SSHScan::SSHLib::OpenSSH.new(@string)
       when /LibSSH/i
         return SSHScan::SSHLib::LibSSH.new()
+      when /Cisco/i
+        return SSHScan::SSHLib::CiscoSSH.new()
+      when /ROS/i
+        return SSHScan::SSHLib::ROSSSH.new()
+      when /DOPRASSH/i
+        return SSHScan::SSHLib::DOPRASSH.new()
+      when /dropbear/i
+        return SSHScan::SSHLib::Dropbear.new(@string)
       else
         return SSHScan::SSHLib::Unknown.new()
       end
@@ -34,6 +42,8 @@ module SSHScan
       case @string
       when /Ubuntu/i
         return SSHScan::OS::Ubuntu.new(@string)
+      when /6.6p1-5build1/i # non-standard Ubuntu release
+        return SSHScan::OS::Ubuntu.new(@string)
       when /CentOS/i
         return SSHScan::OS::CentOS.new
       when /RHEL|RedHat/i
@@ -44,6 +54,12 @@ module SSHScan
         return SSHScan::OS::Debian.new
       when /Windows/i
         return SSHScan::OS::Windows.new
+      when /Cisco/i
+        return SSHScan::OS::Cisco.new
+      when /ROS/i
+        return SSHScan::OS::ROS.new
+      when /DOPRA/i
+        return SSHScan::OS::DOPRA.new
       else
         return SSHScan::OS::Unknown.new
       end

data/lib/ssh_scan/client.rb

@@ -25,10 +25,26 @@ module SSHScan
       rescue Errno::ECONNREFUSED => e
         @error = SSHScan::Error::ConnectionRefused.new(e.message)
         @sock = nil
+      rescue Errno::ENETUNREACH => e
+        @error = SSHScan::Error::ConnectionRefused.new(e.message)
+        @sock = nil
+      rescue Errno::EACCES => e
+        @error = SSHScan::Error::ConnectionRefused.new(e.message)
+        @sock = nil
+      rescue Errno::EHOSTUNREACH => e
+        @error = SSHScan::Error::ConnectionRefused.new(e.message)
+        @sock = nil
       else
-        @raw_server_banner = @sock.gets.chomp
-        @server_banner = SSHScan::Banner.read(@raw_server_banner)
-        @sock.puts(@client_banner.to_s)
+        @raw_server_banner = @sock.gets
+
+        if @raw_server_banner.nil?
+          @error = SSHScan::Error::NoBanner.new("service did not respond with an SSH banner")
+          @sock = nil
+        else
+          @raw_server_banner = @raw_server_banner.chomp
+          @server_banner = SSHScan::Banner.read(@raw_server_banner)
+          @sock.puts(@client_banner.to_s)
+        end
       end
     end
 
@@ -44,13 +60,6 @@ module SSHScan
         return result
       end
 
-      @sock.write(kex_init_raw)
-      resp = @sock.read(4)
-      resp += @sock.read(resp.unpack("N").first)
-      @sock.close
-
-      kex_exchange_init = SSHScan::KeyExchangeInit.read(resp)
-
       # Assemble and print results
       result[:server_banner] = @server_banner
       result[:ssh_version] = @server_banner.ssh_version
@@ -58,6 +67,20 @@ module SSHScan
       result[:os_cpe] = @server_banner.os_guess.cpe
       result[:ssh_lib] = @server_banner.ssh_lib_guess.common
       result[:ssh_lib_cpe] = @server_banner.ssh_lib_guess.cpe
+
+      @sock.write(kex_init_raw)
+      resp = @sock.read(4)
+
+      if resp.nil?
+        @error = SSHScan::Error::NoKexResponse.new("service did not respond to our kex init request")
+        @sock = nil
+        return result
+      end
+      
+      resp += @sock.read(resp.unpack("N").first)
+      @sock.close
+
+      kex_exchange_init = SSHScan::KeyExchangeInit.read(resp)
       result.merge!(kex_exchange_init.to_hash)
 
       return result

data/lib/ssh_scan/error.rb

@@ -2,3 +2,5 @@ require 'ssh_scan/error/connect_timeout'
 require 'ssh_scan/error/closed_connection'
 require 'ssh_scan/error/connection_refused'
 require 'ssh_scan/error/disconnected'
+require 'ssh_scan/error/no_banner'
+require 'ssh_scan/error/no_kex_response'

data/lib/ssh_scan/error/no_banner.rb

@@ -0,0 +1,12 @@
+module SSHScan
+  module Error
+    class NoBanner < Exception
+      def initialize(message)
+        @message = message
+      end
+      def to_s
+        "#{self.class.to_s.split('::')[-1]}: #{@message}"
+      end
+    end
+  end
+end

data/lib/ssh_scan/error/no_kex_response.rb

@@ -0,0 +1,12 @@
+module SSHScan
+  module Error
+    class NoKexResponse < Exception
+      def initialize(message)
+        @message = message
+      end
+      def to_s
+        "#{self.class.to_s.split('::')[-1]}: #{@message}"
+      end
+    end
+  end
+end

data/lib/ssh_scan/os.rb

@@ -4,4 +4,7 @@ require 'ssh_scan/os/freebsd'
 require 'ssh_scan/os/ubuntu'
 require 'ssh_scan/os/windows'
 require 'ssh_scan/os/redhat'
+require 'ssh_scan/os/cisco'
+require 'ssh_scan/os/ros'
+require 'ssh_scan/os/dopra'
 require 'ssh_scan/os/unknown'

data/lib/ssh_scan/os/centos.rb

@@ -8,6 +8,10 @@ module SSHScan
       def cpe
         "o:centos:centos"
       end
+
+      def version
+        nil
+      end
     end
   end
 end

data/lib/ssh_scan/os/cisco.rb

@@ -0,0 +1,17 @@
+module SSHScan
+  module OS
+    class Cisco
+      def common
+        "cisco"
+      end
+
+      def cpe
+        "o:cisco:cisco"
+      end
+
+      def version
+        nil
+      end
+    end
+  end
+end

data/lib/ssh_scan/os/debian.rb

@@ -8,6 +8,10 @@ module SSHScan
       def cpe
         "o:debian:debian"
       end
+
+      def version
+        nil
+      end
     end
   end
 end

data/lib/ssh_scan/os/dopra.rb

@@ -0,0 +1,17 @@
+module SSHScan
+  module OS
+    class DOPRA
+      def common
+        "dopra"
+      end
+
+      def cpe
+        "o:dopra:dopra"
+      end
+
+      def version
+        nil
+      end
+    end
+  end
+end

data/lib/ssh_scan/os/freebsd.rb

@@ -8,6 +8,10 @@ module SSHScan
       def cpe
         "o:freebsd:freebsd"
       end
+
+      def version
+        nil
+      end
     end
   end
 end

data/lib/ssh_scan/os/redhat.rb

@@ -8,6 +8,10 @@ module SSHScan
       def cpe
         "o:redhat:redhat"
       end
+
+      def version
+        nil
+      end
     end
   end
 end

data/lib/ssh_scan/os/ros.rb

@@ -0,0 +1,17 @@
+module SSHScan
+  module OS
+    class ROS
+      def common
+        "ros"
+      end
+
+      def cpe
+        "o:ros:ros"
+      end
+
+      def version
+        nil
+      end
+    end
+  end
+end

data/lib/ssh_scan/os/ubuntu.rb

@@ -172,7 +172,7 @@ module SSHScan
         OS::Ubuntu::FINGERPRINTS
       end
 
-      def ubuntu_version
+      def version
         @version
       end
 

data/lib/ssh_scan/os/unknown.rb

@@ -8,6 +8,10 @@ module SSHScan
       def cpe
         "o:unknown"
       end
+
+      def version
+        nil
+      end
     end
   end
 end

data/lib/ssh_scan/os/windows.rb

@@ -8,6 +8,10 @@ module SSHScan
       def cpe
         "o:microsoft:windows"
       end
+
+      def version
+        nil
+      end
     end
   end
 end

data/lib/ssh_scan/policy_manager.rb

@@ -89,6 +89,8 @@ module SSHScan
     end
 
     def out_of_policy_auth_methods
+      return [] if @result["auth_methods"].nil?
+
       target_auth_methods = @result["auth_methods"]
       outliers = []
 

data/lib/ssh_scan/scan_engine.rb

@@ -7,6 +7,9 @@ module SSHScan
 
     def scan_target(socket, opts)
       target, port = socket.chomp.split(':')
+      if port.nil?
+        port = 22
+      end
       policy = opts[:policy_file]
       timeout = opts[:timeout]
       result = []
@@ -48,27 +51,13 @@ module SSHScan
         host_key = net_ssh_session.host_keys.first
         net_ssh_session.close
       rescue Net::SSH::ConnectionTimeout => e
-        warn("WARNING: net-ssh timed out attempting to connect to service (fingerprints and auth_methods will not be available)")
-        result['auth_methods'] = []
-        result['fingerprints'] = {}
         result[:error] = e
         result[:error] = SSHScan::Error::ConnectTimeout.new(e.message)
       rescue Net::SSH::Disconnect => e
-        warn("WARNING: net-ssh disconnected unexpectedly (fingerprints and auth_methods will not be available)")
-        result['auth_methods'] = []
-        result['fingerprints'] = {}
         result[:error] = e
         result[:error] = SSHScan::Error::Disconnected.new(e.message)
       rescue Net::SSH::Exception => e
-        if e.to_s.match(/could not settle on encryption_client algorithm/)
-          warn("WARNING: net-ssh could not find a mutually acceptable encryption algorithm (fingerprints and auth_methods will not be available)")
-          result['auth_methods'] = []
-          result['fingerprints'] = {}
-          result[:error] = e
-        elsif e.to_s.match(/could not settle on host_key algorithm/)
-          warn("WARNING: net-ssh could not find a mutually acceptable host_key algorithm (fingerprints and auth_methods will not be available)")
-          result['auth_methods'] = []
-          result['fingerprints'] = {}
+        if e.to_s.match(/could not settle on/)
           result[:error] = e
         else
           raise e
@@ -90,22 +79,32 @@ module SSHScan
            "sha1" => fingerprint_sha1,
            "sha256" => fingerprint_sha256,
           }
-          # Do this only when no errors were reported
-          unless policy.nil?
-            policy_mgr = SSHScan::PolicyManager.new(result, policy)
-            result['compliance'] = policy_mgr.compliance_results
-          end
-        else
-          warn("WARNING: Host key support for #{host_key.class} is not provided yet (fingerprints will not be available)")
-          result['fingerprints'] = {}
         end
       end
+
+      # Do this only when no errors were reported
+      if !policy.nil? &&
+         !result[:key_algorithms].nil? &&
+         !result[:server_host_key_algorithms].nil? &&
+         !result[:encryption_algorithms_client_to_server].nil? &&
+         !result[:encryption_algorithms_server_to_client].nil? &&
+         !result[:mac_algorithms_client_to_server].nil? &&
+         !result[:mac_algorithms_server_to_client].nil? &&
+         !result[:compression_algorithms_client_to_server].nil? &&
+         !result[:compression_algorithms_server_to_client].nil? &&
+         !result[:languages_client_to_server].nil? &&
+         !result[:languages_server_to_client].nil?
+        policy_mgr = SSHScan::PolicyManager.new(result, policy)
+        result['compliance'] = policy_mgr.compliance_results
+      end
+
       return result
     end
 
     def scan(opts)
       sockets = opts[:sockets]
       threads = opts[:threads] || 5
+      logger = opts[:logger]
 
       results = []
 
@@ -115,7 +114,9 @@ module SSHScan
         Thread.new do
           begin
             while socket = work_queue.pop(true)
+              logger.info("Started ssh_scan of #{socket}")
               results << scan_target(socket, opts)
+              logger.info("Completed ssh_scan of #{socket}")
             end
           rescue ThreadError => e
             raise e unless e.to_s.match(/queue empty/)

data/lib/ssh_scan/ssh_lib.rb

@@ -1,3 +1,7 @@
 require 'ssh_scan/ssh_lib/openssh'
 require 'ssh_scan/ssh_lib/libssh'
+require 'ssh_scan/ssh_lib/ciscossh'
+require 'ssh_scan/ssh_lib/rosssh'
+require 'ssh_scan/ssh_lib/doprassh'
+require 'ssh_scan/ssh_lib/dropbear'
 require 'ssh_scan/ssh_lib/unknown'

data/lib/ssh_scan/ssh_lib/ciscossh.rb

@@ -0,0 +1,17 @@
+module SSHScan
+  module SSHLib
+    class CiscoSSH
+      def common
+        "ciscossh"
+      end
+
+      def cpe
+        "a:cisco:ciscossh"
+      end
+      
+      def version
+        nil
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/doprassh.rb

@@ -0,0 +1,17 @@
+module SSHScan
+  module SSHLib
+    class DOPRASSH
+      def common
+        "doprassh"
+      end
+
+      def cpe
+        "a:doprassh:doprassh"
+      end
+
+      def version
+        nil
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/dropbear.rb

@@ -0,0 +1,43 @@
+module SSHScan
+  module SSHLib
+    class Dropbear
+      class Version
+        def initialize(version_string)
+          if version_string == nil
+            @version_string = "unknown"
+          else
+            @version_string = version_string
+          end
+        end
+        def to_s
+          @version_string
+        end
+      end
+
+      def initialize(banner)
+        @banner = banner
+        @version = Dropbear::Version.new(dropbear_version_guess)
+      end
+
+      def dropbear_version_guess
+        return nil if @banner.nil?
+        match = @banner.match(/SSH-2.0-dropbear_(\d+.\d+(?:.\d)?(?:test(:?\d)?)?)/)
+        return nil if match.nil?
+        return match[1]
+      end
+
+      def common
+        "dropbear"
+      end
+
+      def cpe
+        "o:dropbear:dropbear:#{@version.to_s}"
+      end
+
+      def version
+        @version
+      end
+    end
+  end
+end
+

data/lib/ssh_scan/ssh_lib/libssh.rb

@@ -8,6 +8,10 @@ module SSHScan
       def cpe
         "a:libssh:libssh"
       end
+
+      def version
+        nil
+      end
     end
   end
 end

data/lib/ssh_scan/ssh_lib/rosssh.rb

@@ -0,0 +1,17 @@
+module SSHScan
+  module SSHLib
+    class ROSSSH
+      def common
+        "rosssh"
+      end
+
+      def cpe
+        "a:rosssh:rosssh"
+      end
+
+      def version
+        nil
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/unknown.rb

@@ -8,6 +8,10 @@ module SSHScan
       def cpe
         "a:unknown"
       end
+
+      def version
+        nil
+      end
     end
   end
 end

data/lib/ssh_scan/target_parser.rb

@@ -3,9 +3,13 @@ require 'string_ext'
 
 module SSHScan
   class TargetParser
-    def enumerateIPRange(ip, port = "22")
+    def enumerateIPRange(ip,port)
       if ip.fqdn?
-        socket = ip.concat(":").concat(port.to_s)
+        if port.nil?
+          socket = ip
+        else
+          socket = ip.concat(":").concat(port.to_s)
+        end
         return [socket]
       else
         if ip.include? "-"
@@ -14,17 +18,25 @@ module SSHScan
           lower = NetAddr::CIDR.create(octets.join('.') + "." + range[0])
           upper = NetAddr::CIDR.create(octets.join('.') + "." + range[1])
           ip_array = NetAddr.range(lower, upper,:Inclusive => true)
-          ip_array.map! { |ip| ip.concat(":").concat(port.to_s) }
+          if !port.nil?
+            ip_array.map! { |ip| ip.concat(":").concat(port.to_s) }
+          end
           return ip_array
         elsif ip.include? "/"
           cidr = NetAddr::CIDR.create(ip)
           ip_array = cidr.enumerate
           ip_array.delete(cidr.network)
           ip_array.delete(cidr.last)
-          ip_array.map! { |ip| ip.concat(":").concat(port.to_s) }
+          if !port.nil?
+            ip_array.map! { |ip| ip.concat(":").concat(port.to_s) }
+          end
           return ip_array
         else
-          socket = ip.concat(":").concat(port.to_s)
+          if port.nil?
+            socket = ip
+          else
+            socket = ip.concat(":").concat(port.to_s)
+          end
           return [socket]
         end
       end

data/lib/ssh_scan/version.rb

@@ -1,3 +1,3 @@
 module SSHScan
-  VERSION = '0.0.12'
+  VERSION = '0.0.13'
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: ssh_scan
 version: !ruby/object:Gem::Version
-  version: 0.0.12
+  version: 0.0.13
 platform: ruby
 authors:
 - Jonathan Claudius
@@ -9,7 +9,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2016-09-01 00:00:00.000000000 Z
+date: 2016-09-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bindata
@@ -133,11 +133,16 @@ files:
 - lib/ssh_scan/error/connect_timeout.rb
 - lib/ssh_scan/error/connection_refused.rb
 - lib/ssh_scan/error/disconnected.rb
+- lib/ssh_scan/error/no_banner.rb
+- lib/ssh_scan/error/no_kex_response.rb
 - lib/ssh_scan/os.rb
 - lib/ssh_scan/os/centos.rb
+- lib/ssh_scan/os/cisco.rb
 - lib/ssh_scan/os/debian.rb
+- lib/ssh_scan/os/dopra.rb
 - lib/ssh_scan/os/freebsd.rb
 - lib/ssh_scan/os/redhat.rb
+- lib/ssh_scan/os/ros.rb
 - lib/ssh_scan/os/ubuntu.rb
 - lib/ssh_scan/os/unknown.rb
 - lib/ssh_scan/os/windows.rb
@@ -146,8 +151,12 @@ files:
 - lib/ssh_scan/protocol.rb
 - lib/ssh_scan/scan_engine.rb
 - lib/ssh_scan/ssh_lib.rb
+- lib/ssh_scan/ssh_lib/ciscossh.rb
+- lib/ssh_scan/ssh_lib/doprassh.rb
+- lib/ssh_scan/ssh_lib/dropbear.rb
 - lib/ssh_scan/ssh_lib/libssh.rb
 - lib/ssh_scan/ssh_lib/openssh.rb
+- lib/ssh_scan/ssh_lib/rosssh.rb
 - lib/ssh_scan/ssh_lib/unknown.rb
 - lib/ssh_scan/target_parser.rb
 - lib/ssh_scan/version.rb