Comparison of SSH clients

Last updated

An SSH client is a software program which uses the secure shell protocol to connect to a remote computer. This article compares a selection of notable clients.

Contents

General

NameDeveloperInitial releasePlatformLatest release License GUI TUI/CLI
VersionDate
AbsoluteTelnet Celestial Software (Brian Pence)1996Windows11.24 [1]   OOjs UI icon edit-ltr-progressive.svg 2020-08-13 Proprietary Check-green.svgDark Red x.svg
Bitvise SSH ClientBitvise Limited2001Windows9.32 [2] [3]   OOjs UI icon edit-ltr-progressive.svg 2023-12-20 Proprietary Check-green.svgCheck-green.svg
ConnectBot Kenny Root
Jeffrey Sharkey		2007-11 [a] Android1.9.10 [4]   OOjs UI icon edit-ltr-progressive.svg 2023-12-21 Apache-2.0  ? ?
Dropbear Matt Johnston2003-04-06AIX2025.88 [5]   OOjs UI icon edit-ltr-progressive.svg 2025-05-07 MIT Dark Red x.svgCheck-green.svg
BSD
Cygwin
Linux
HP-UX
iOS
Maemo
macOS
Solaris
OpenSSH [b] The OpenBSD project1999-12-01 [c] AIX10.0 [6]   OOjs UI icon edit-ltr-progressive.svg 2025-04-09 BSD Dark Red x.svgCheck-green.svg
Android
BSD
Cygwin
Linux
HP-UX
iOS
Maemo
OpenVMS
macOS
Solaris
Windows
z/OS
PuTTY Simon Tatham 1999-01-22BSD0.83 [7]   OOjs UI icon edit-ltr-progressive.svg 2025-02-08 MIT Check-green.svgCheck-green.svg
Linux
macOS
Solaris
Windows
SecureCRT VanDyke Software1998–06Linux9.6.3 [8]   OOjs UI icon edit-ltr-progressive.svg 2025-05-08 Proprietary Check-green.svgDark Red x.svg
macOS9.6.3 [8]   OOjs UI icon edit-ltr-progressive.svg 2025-05-08
iOS3.0.1 [9]   OOjs UI icon edit-ltr-progressive.svg 2023-12-21
Windows9.6.3 [8]   OOjs UI icon edit-ltr-progressive.svg 2025-05-08
Tera Term TeraTerm Project2004 [d] Windows5.4.0 [10]   OOjs UI icon edit-ltr-progressive.svg 2025-03-02 BSD-3-Clause Check-green.svgDark Red x.svg
TN3270 Plus SDI USA, Inc.2006Windows4.0.7 [11]   OOjs UI icon edit-ltr-progressive.svg 2019-02 Proprietary Check-green.svgDark Red x.svg
WinSCP Martin Přikryl2000Windows6.3.32024-04-16GNU GPLCheck-green.svg ?
wolfSSH wolfSSL 2016-07-20 [e] BSD1.4.20 [12]   OOjs UI icon edit-ltr-progressive.svg 2025-02-20 GPL-3.0-or-later [f] Dark Red x.svgCheck-green.svg
Cygwin
Linux
macOS
Solaris
Windows
ZOC Terminal EmTec, Innovative Software1995-07-01macOS9.01.4 [13]   OOjs UI icon edit-ltr-progressive.svg 2025-07-24 Proprietary Check-green.svgCheck-green.svg
OS/24.15 [14]   OOjs UI icon edit-ltr-progressive.svg 2004-08-25
Windows9.01.4 [13]   OOjs UI icon edit-ltr-progressive.svg 2025-07-24
  1. Based on Trilead SSH-2 for Java.
  2. Also known as OpenBSD Secure Shell.
  3. Based on OSSH.
  4. Based on Tera Term Pro 2.3 (1994–1998).
  5. Based on wolfCrypt.
  6. Also available under a proprietary license.

Platform

The operating systems or virtual machines the SSH clients are designed to run on without emulation include several possibilities:

The list is not exhaustive, but rather reflects the most common platforms today.

Name macOS Windows Cygwin BSD Linux Solaris OpenVMS z/OS AIX HP-UX iOS Android Maemo Windows Phone
AbsoluteTelnet NoYesNoNoNoNoNoNoNoNoNoNoNo ?
Bitvise SSH ClientNoYesNoNoNoNoNoNoNoNoNoNoNoNo
ConnectBot NoNoNoNoNoNoNoNoNoNoNoYesNoNo
Dropbear YesNoYesYesYesYes ? ?YesYesYes [a] NoYes ?
lsh YesNoNoPartial [b] YesYes ? ?NoNoNoNoNo ?
OpenSSH [c] IncludedIncluded [d] IncludedIncludedIncluded [e] YesYesYesYesYesYes [a] YesYes ?
PuTTY PartialYes ?YesYesYes ? ?NoNoNoNoNo Beta
SecureCRT YesYesNoNoYesNoNoNoNoNoYesNoNo ?
SmartFTP NoYesNoNoNoNoNoNoNoNoNoNoNo ?
Tera Term NoYesNoNoNoNoNoNoNoNoNoNoNo ?
TN3270 Plus NoYesNoNoNoNoNoNoNoNoNoNoNo ?
WinSCP NoYesNoNoNoNoNoNoNoNoYes [a] NoNo ?
wolfSSH YesYesYesYesYesYesNoNoNoNoNoNoNoNo
ZOC Terminal YesYesNoNoNoNoNoNoNoNoNoNoNo ?
Name macOS Windows Cygwin BSD Linux Solaris OpenVMS z/OS AIX HP-UX iOS Android Maemo Windows Phone
  1. 1 2 3 Only for jailbroken devices.
  2. lsh supports only one BSD platform officially, FreeBSD.
  3. Also known as OpenBSD Secure Shell.
  4. Included and enabled by default since windows 10 version 1803. Win32-OpenSSH can be installed as an optional component in the Windows versions before Windows 10 version 1803 to Windows 10 version 1709. Portable version can be download from Win32-OpenSSH for other versions.
  5. The majority of Linux distributions have OpenSSH as an official package, but a few do not.

Technical

NameSSH1
(insecure)		SSH2Additional protocols Port forwarding and Tunneling Session
multiplexing
[a] 		Kerberos IPv6 Terminal SFTP/SCP Proxy client [b]
TELNET rlogin Port
forwarding 		SOCKS
[c] 		VPN
[d]
AbsoluteTelnet yesYesYesNoYesYesNoYesYesYesYesYesSOCKS 4, 5; HTTP
Bitvise SSH ClientnoYesNoNoYesYesYesYesYesYesYesYesSOCKS 4, 5
Dropbear noYesNoNoYesNoNoNoNoYesYesYes ?
lsh noYesYesNoYesYesNoYesNoYesYesYes ?
OpenSSH [e] no [f] YesNoNoYesYesYesYesYesYesYesYesProxyCommand
PuTTY yesYesYesYesYesYesNoYesYes [g] YesYesYes [h] SOCKS 4, 5; HTTP; Telnet; Local
SecureCRT yesYesYesYesYesYesNoYesYesYesYesYesSOCKS 4, 5; HTTP; Telnet; Generic
SmartFTP noYesYesNoNoNoNoNoYesYesYesYesSOCKS 4, 5; HTTP
Tera Term yesYesYesNoYesNoNoNoNoYesYesSCPSOCKS 4, 5; HTTP; Telnet
TN3270 Plus yesYesYesNoNoYesNoYesNoYesYesNoSOCKS 4
WinSCP [i] no [j] YesNoNolimited [k] NoNoNoYesYessimpleYesSOCKS 4, 5; HTTP; Telnet; Local
wolfSSH noYesNoNoYesNoNoNoNoYessimpleYesNo
ZOC Terminal yesYesYesYesYesYesNoNoYesYesYesYes [l] [m] SOCKS 4; 5; HTTP; Jumpserver
NameSSH1
(insecure)		SSH2Additional protocols Tunneling Session
multiplexing
[a] 		Kerberos IPv6 Terminal SFTP/SCP Proxy client [b]
TELNET rlogin Port
forwarding 		SOCKS
[c] 		VPN
[d]
  1. 1 2 Accelerating OpenSSH connections with ControlMaster.
  2. 1 2 Can the SSH client connect itself through a proxy? This is distinct from offering a SOCKS proxy or port forwarding.
  3. 1 2 The ability for the SSH client to perform dynamic port forwarding by acting as a local SOCKS proxy.
  4. 1 2 The ability for the SSH client to establish a VPN, e.g. using TUN/TAP.
  5. Also known as OpenBSD Secure Shell.
  6. OpenSSH deleted SSH protocol version 1 support in version 7.6 (2017-10-03)
  7. The version 0.63 supports GSSAPI. Successfully tested on Win 8 using Active Directory
  8. The PuTTY developers provide SCP and SFTP functionality as binaries for separate download.
  9. WinSCP bundles a number of software components including PuTTY. .
  10. WinSCP Version history.
  11. WinSCP connection tunneling.
  12. SCP and SFTP through terminal.
  13. SCP and SFTP according to ZOC features page.

Features

NameKeyboard mapping
Session tabs
ZMODEM
transfers
Find text
in buffer
Mouse input
support [a]
Unicode
support
URL hyperlinking
Public key
authentication
Smart card
support
Hardware encryption
FIPS 140-2
validation
Scripting
Shared
Database
Auto-reconnect
CA Certificates
AbsoluteTelnet fullYesYesYesYesYesYesYesYes ?YesYes ? ? ?
Bitvise SSH Client ?NoNoNoYesYesNoYesNo ?PartialYesNoYesNo
OpenSSH [b]  ?NoNo ?Yes [c] Yesnot native [d] YesYesYesPartial [e] NoNo ?Yes [f]
PuTTY NoNo [g] NoNoYesYesNo [h] YesNoYesNoNoNoNoNo [i]
SecureCRT YesYesYesYesYesYesYesYesYesNoYesYesNo ? ?
SmartFTP PartialYesNoYesYesYesYesYesYes AES-NI YesNo ? ? ?
Tera Term YesYesYesNoYesYesYesYesNoNoNoYesNo ? ?
TN3270 Plus YesYesNoNoNoNoYesYesNoNoNoYes ? ? ?
wolfSSH NoNoNoNoNoYesNoYesNoYesYesNoNoNoYes
ZOC Terminal fullYesYesYesYesYesYesYesYesYes [j] NoYes ? ?Yes [k]
  1. The ability to transmit mouse input to text mode applications such as Midnight Commander
  2. Also known as OpenBSD Secure Shell.
  3. Only when the terminal itself supports mouse input. Most graphical ones do, e.g. xterm.
  4. No native URL highlighting; however most graphical consoles support URL highlighting.
  5. Validated when running OpenSSH 2.1 on Red Hat Enterprise Linux 6.2 in FIPS mode or when running OpenSSH 1.1 on Red Hat Enterprise Linux 5 in FIPS mode
  6. OpenSSH supports the minimal certificate format since v5.4. "OpenSSH Release Notes: 5.4". OpenBSD Project. 2010-03-08. Retrieved 2021-08-30.
  7. PuTTY does not support tabs directly, but many wrappers are available that do.
  8. Putty v71.0 does not support OpenSSH certificates. See Ben Harris' 2016-04-21 wish. [15] [16]
  9. ZOC supports FIDO/sk keys with Version 9, see Version history and FIDO2 Instructions. [17] [18]
  10. ZOC supports OpenSSSH style CA Keys, see ZOC feature list (SSH features). [19]

Authentication key algorithms

This table lists standard authentication key algorithms implemented by SSH clients. Some SSH implementations include both server and client implementations and support custom non-standard authentication algorithms not listed in this table.

Namessh-dss [a] ssh-rsa RSA with SHA-2 ECDSA with SHA-2 EdDSA Security keys
rsa-sha2-256rsa-sha2-512ecdsa-sha2-nistp256ecdsa-sha2-nistp384ecdsa-sha2-nistp521ssh-ed25519ssh-ed448sk-ecdsa-sha2-nistp256sk-ssh-ed25519
AbsoluteTelnet YesYesYesYesYesYesYesYesNoNoNo
Bitvise SSH Client ? ? ? ? ? ? ? ? ?
Dropbear YesYesYesNoYesYesYesYes ?
lsh  ? ? ? ? ? ? ? ? ?
OpenSSH [b] Yes [c] YesYesYesYesYesYesYesNoYesYes
PuTTY YesYesYesYesYesYesYesYesYesNo [d] No [d]
SecureCRT YesYesYesYesYesYesYesYes ?
SmartFTP YesYesYesYesYesYesYesYesNoNoNo
Tera Term  ? ? ? ? ? ? ? ? ?
TN3270 Plus  ? ? ? ? ? ? ? ? ?
WinSCP NoYesYesYesYesYesYes ? ?
wolfSSH NoYesYesYesYesYesYesNoNoNoNo
ZOC Terminal [e] YesYesYesYesYesYesYesYesNoYes [f] Yes [f]


  1. ssh-dss is based on Digital Signature Algorithm which is sensitive to entropy, secrecy, and uniqueness of its random signature value.
  2. Also known as OpenBSD Secure Shell.
  3. By default, disabled at run-time since OpenSSH 7.0 released in 2015.
  4. 1 2 PuTTY does not support security keys / FIDO tokens, but is supported in PuTTY-CAC
  5. ZOC' SSH is based on OpenSSH and supports the same encryptions.
  6. 1 2 ZOC supports FIDO/sk keys with Version 9, see Version history and FIDO2 Instructions. [17] [18]

See also

References

  1. "AbsoluteTelnet/SSH Version History".
  2. "Bitvise SSH Client Version History". 20 December 2023.
  3. "Bitvise SSH Server Version History". 20 December 2023.
  4. "Release 1.9.10". 21 December 2023. Retrieved 19 January 2024.
  5. . 7 May 2025 https://github.com/mkj/dropbear/releases/tag/DROPBEAR_2025.88 . Retrieved 8 May 2025.{{cite web}}: Missing or empty |title= (help)
  6. "release-10.0". 9 April 2025. Retrieved 9 April 2025.
  7. Simon Tatham (8 February 2025). "PuTTY 0.83 is released" . Retrieved 9 February 2025.
  8. 1 2 3 "SecureCRT 9.6.3".
  9. "SecureCRT on the App Store". 21 December 2023.
  10. "Release 5.4.0". 2 March 2025. Retrieved 31 March 2025.
  11. "TN3270 Plus Version History". February 2019.
  12. "Release 1.4.20". 20 February 2025. Retrieved 28 February 2025.
  13. 1 2 https://www.emtec.com/zoc/versionhistory.html.{{cite web}}: Missing or empty |title= (help)
  14. "ZOC V4.15". 25 August 2004.
  15. "ssh2-openssh-certkeys.html".
  16. "ssh2-openssh-certkeys".
  17. 1 2 "ZOC Version History".
  18. 1 2 "Using FIDO2/SK Keys with ZOC Terminal on Windows for Access to Linux Servers".
  19. "ZOC Feature List (SSH)".
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.