Author Topic: What the hell?  (Read 1151 times)

0 Members and 2 Guests are viewing this topic.

Offline lucid

  • #Underground
  • Titan
  • **
  • Posts: 2683
  • Cookies: 243
  • psychonaut
    • View Profile
What the hell?
« on: January 04, 2014, 05:15:31 am »
Regrettably I'm posting here asking a rather mundane question, but I'm having this silly problem. Does wireshark not allow you to filter SSH packets anymore or something? I used to be able to just type 'ssh' into the filter and only my SSH packets would show up(go figure). Now this doesn't seem to be the case. See, I just want to analyze an SSH packet to make sure that I have the proper cipher set(blowfish). It used to be real easy. Add 'ssh' into the filter, then run ssh. Then analyze the packet and at the very bottom it would show what cipher is used and if compression is enabled.

Another thing I noticed, if I remove all filters and run SSH I don't even see SSH packets show up at all. Just TCP. So I'm confused.
"Hacking is at least as much about ideas as about computers and technology. We use our skills to open doors that should never have been shut. We open these doors not only for our own benefit but for the benefit of others, too." - Brian the Hacker

Quote
15:04  @Phage : I'm bored of Python

Offline Kulverstukas

  • Administrator
  • Zeus
  • *
  • Posts: 6627
  • Cookies: 542
  • Fascist dictator
    • View Profile
    • My blog
Re: What the hell?
« Reply #1 on: January 04, 2014, 10:44:43 am »
Download an older version and try again.

Offline lucid

  • #Underground
  • Titan
  • **
  • Posts: 2683
  • Cookies: 243
  • psychonaut
    • View Profile
Re: What the hell?
« Reply #2 on: January 04, 2014, 09:07:22 pm »
Damn. Yeah I already tried filtering for the port that it was listening on(not 22) and saw the corresponding TCP packets. None of them, however, seemed to contain any information regarding what cipher ssh was using, or really very much ssh specific information at all.

Wireshark used to show SSHv2 protocol packets specifically. Guess I'm downloading an older version.
« Last Edit: January 04, 2014, 09:07:49 pm by lucid »
"Hacking is at least as much about ideas as about computers and technology. We use our skills to open doors that should never have been shut. We open these doors not only for our own benefit but for the benefit of others, too." - Brian the Hacker

Quote
15:04  @Phage : I'm bored of Python