From 5b7a3a95d3c57583875e1de8bb5306623cb42599 Mon Sep 17 00:00:00 2001
From: Fisjkars <maxime.escourbiac@gmail.com>
Date: Tue, 18 Dec 2018 11:05:15 +0100
Subject: [PATCH] Add Springboot Actuator management interface

	new file:   Insecure management interface/README.md
	new file:   Insecure management interface/intruders/springboot_actuator.txt
---
 Insecure management interface/README.md       | 10 ++++
 .../intruders/springboot_actuator.txt         | 52 +++++++++++++++++++
 2 files changed, 62 insertions(+)
 create mode 100644 Insecure management interface/README.md
 create mode 100644 Insecure management interface/intruders/springboot_actuator.txt

diff --git a/Insecure management interface/README.md b/Insecure management interface/README.md
new file mode 100644
index 0000000..a288131
--- /dev/null
+++ b/Insecure management interface/README.md	
@@ -0,0 +1,10 @@
+# Insecure management interface
+
+## Springboot-Actuator
+
+Actuator endpoints let you monitor and interact with your application. Spring Boot includes a number of built-in endpoints and lets you add your own. For example, the health endpoint provides basic application health information.
+
+Each individual endpoint can be enabled or disabled. This controls whether or not the endpoint is created and its bean exists in the application context. To be remotely accessible an endpoint also has to be exposed via JMX or HTTP. Most applications choose HTTP, where the ID of the endpoint along with a prefix of /actuator is mapped to a URL. For example, by default, the health endpoint is mapped to /actuator/health.
+
+
+## Thanks to
diff --git a/Insecure management interface/intruders/springboot_actuator.txt b/Insecure management interface/intruders/springboot_actuator.txt
new file mode 100644
index 0000000..1b12a1d
--- /dev/null
+++ b/Insecure management interface/intruders/springboot_actuator.txt	
@@ -0,0 +1,52 @@
+auditevents
+autoconfig
+beans
+caches
+conditions
+configprops
+dump
+env
+flyway
+health
+heapdump
+httptrace
+info
+integrationgraph
+jolokia
+logfile
+loggers
+liquibase
+metrics
+mappings
+prometheus
+scheduledtasks
+sessions
+shutdown
+threaddump
+trace
+actuator/auditevents
+actuator/autoconfig
+actuator/beans
+actuator/caches
+actuator/conditions
+actuator/configprops
+actuator/dump
+actuator/env
+actuator/flyway
+actuator/health
+actuator/heapdump
+actuator/httptrace
+actuator/info
+actuator/integrationgraph
+actuator/jolokia
+actuator/logfile
+actuator/loggers
+actuator/liquibase
+actuator/metrics
+actuator/mappings
+actuator/prometheus
+actuator/scheduledtasks
+actuator/sessions
+actuator/shutdown
+actuator/threaddump
+actuator/trace
\ No newline at end of file