nuclei-templates/ssl/revoked-ssl-certificate.yaml

id: revoked-ssl-certificate

info:
  name: Revoked SSL Certificate - Detect
  author: pussycat0x
  severity: low
  description: |
    Certificate revocation is the act of invalidating a TLS/SSL before its scheduled expiration date. A certificate should be revoked immediately when its private key shows signs of being compromised. It should also be revoked when the domain for which it was issued is no longer operational.
  reference: |
    - https://www.invicti.com/web-vulnerability-scanner/vulnerabilities/revoked-ssl-certificate/
    - https://www.tenable.com/plugins/nnm/5837
  metadata:
    max-request: 1
  tags: ssl,tls,revoked
ssl:
  - address: "{{Host}}:{{Port}}"
    matchers:
      - type: dsl
        dsl:
          - "revoked == true"
# digest: 4b0a00483046022100c1ea1d5f4cf38a2f4f5b4b6b835fb2f1e6b03f892293a2eafe450a76374b0df1022100cc0060523b24142c5633c50b9c67608d14a9f7ee8a922b1ce3a46f6ee802f4aa:922c64590222798bb761d5b6d8e72950
Revoked SSL Certificate - Detect 2023-03-09 06:02:21 +00:00			`id: revoked-ssl-certificate`

			`info:`
			`name: Revoked SSL Certificate - Detect`
			`author: pussycat0x`
Update revoked-ssl-certificate.yaml 2023-03-16 14:40:33 +00:00			`severity: low`
Revoked SSL Certificate - Detect 2023-03-09 06:02:21 +00:00			`description: \|`
templateman update 2023-10-14 11:27:55 +00:00			`Certificate revocation is the act of invalidating a TLS/SSL before its scheduled expiration date. A certificate should be revoked immediately when its private key shows signs of being compromised. It should also be revoked when the domain for which it was issued is no longer operational.`
Revoked SSL Certificate - Detect 2023-03-09 06:02:21 +00:00			`reference: \|`
			`- https://www.invicti.com/web-vulnerability-scanner/vulnerabilities/revoked-ssl-certificate/`
			`- https://www.tenable.com/plugins/nnm/5837`
Added max request counter of each template 2023-04-28 08:11:21 +00:00			`metadata:`
			`max-request: 1`
auto tagging via templateman 2024-01-14 09:21:50 +00:00			`tags: ssl,tls,revoked`
Revoked SSL Certificate - Detect 2023-03-09 06:02:21 +00:00			`ssl:`
			`- address: "{{Host}}:{{Port}}"`
			`matchers:`
			`- type: dsl`
			`dsl:`
Update revoked-ssl-certificate.yaml 2023-03-16 14:40:33 +00:00			`- "revoked == true"`
Auto Template Signing [Fri Dec 8 07:58:29 UTC 2023] :robot: 2023-12-08 07:58:29 +00:00			`# digest: 4b0a00483046022100c1ea1d5f4cf38a2f4f5b4b6b835fb2f1e6b03f892293a2eafe450a76374b0df1022100cc0060523b24142c5633c50b9c67608d14a9f7ee8a922b1ce3a46f6ee802f4aa:922c64590222798bb761d5b6d8e72950`