nuclei-templates/http/technologies/jenkins-detect.yaml

52 lines
1.3 KiB
YAML
Raw Permalink Normal View History

id: jenkins-detect
info:
name: Jenkins Detection
author: philippdelteil,daffainfo,c-sh0,AdamCrosser
severity: info
reference:
- https://www.jenkins.io/doc/book/using/remote-access-api/#RemoteaccessAPI-DetectingJenkinsversion
- https://github.com/jenkinsci/jenkins/pull/470
- https://www.jenkins.io/doc/book/security/access-control/permissions/#access-granted-without-overallread
classification:
cpe: cpe:2.3:a:jenkins:jenkins:*:*:*:*:*:*:*:*
metadata:
max-request: 2
vendor: jenkins
product: jenkins
2023-10-14 11:27:55 +00:00
shodan-query: http.favicon.hash:81586312
category: devops
tags: tech,jenkins,detect
http:
- method: GET
path:
- "{{BaseURL}}"
- "{{BaseURL}}/whoAmI/"
host-redirects: true
max-redirects: 2
stop-at-first-match: true
2023-10-14 11:27:55 +00:00
matchers-condition: and
matchers:
- type: word
part: header
words:
- "x-jenkins:"
case-insensitive: true
2021-07-28 14:59:55 +00:00
- type: word
words:
- "Jenkins"
2021-07-28 14:59:55 +00:00
extractors:
- type: kval
name: version
kval:
2021-07-28 14:59:55 +00:00
- x_jenkins
- type: kval
kval:
- version
# digest: 4a0a00473045022003514a46c47a8f73f88d42fb0a4e926f061dd40fe52f73d4c00d633f502390460221008cd44f6ac8838884dc8fada8490ef3c3dfa9b36b9efb55e650fe19a4d083bfa6:922c64590222798bb761d5b6d8e72950