SSHepherd Documentation
< All Topics
Print

Get to know SSHepherd®

Overview

SSHepherd® is a cybersecurity software product which removes top attack vectors that hackers frequently attempt to penetrate: Remote Desktop Protocol (RDP), Secure Shell Protocol (SSH), and TCP/IP application ports. These protocols have open, listening ports that can be scanned.  SSHepherd® allows you to close these ports, and the servers appear offline. Yet authorized users, applications, and DevOps tools can access them. Users accessing those hosts are still able to use their existing toolsets but they will connect to those toolsets through the SSHepherd® Control App or the CLI. ​

As a result of turning off the ports and providing a secure way to access those hosts, SSHepherd® reduces security alerts, prevents lateral movement across servers, provides monitoring and auditing of sessions, and provides a real-time kill switch if rogue behavior is detected.

Architecture

SSHepherd® has 3 components, the Control App/CLI, the Command and Control (C3) Server, and the Agent. SSHepherd® utilizes our proprietary websocket io to establish a tunnel between Client and Agent in the absence of open ports. This tunnel is TLS encrypted and appears as outbound web traffic from the Agent machine.

Demo Videos

Below you will find a few quick demos of SSHepherd® in action.

SSHepherd® 1.5 RDP Demo
SSHepherd® 1.5 SSH Demo
SSHepherd® 1.5 Apache Demo
In This Article