nuclei-templates/javascript/enumeration/pop3/pop3-capabilities-enum.yaml

id: pop3-capabilities-enum

info:
  name: POP3 Capabilities - Enumeration
  author: pussycat0x
  severity: info
  description: |
    POP3 capabilities are defined in RFC 2449. The CAPA command allows a client to ask a server what commands it supports and possibly any site-specific policy. Besides the list of supported commands, the IMPLEMENTATION string giving the server version may be available.
  reference:
    - https://nmap.org/nsedoc/scripts/pop3-capabilities.html
  metadata:
    max-request: 1
    shodan-query: "port:110"
    verified: true
  tags: js,network,pop3,enum

javascript:
  - code: |
      let data = "CAPA\r\n"
      let c = require("nuclei/net");
      let conn = c.Open('tcp', `${Host}:${Port}`);
      conn.Send(data);
      let result = conn.RecvString();
      let cleanedData = result.replace(/\+OK Dovecot ready\.\r\n\+OK|\r\n|\s/g, " ");
      console.log(Export(cleanedData))

    args:
      Host: "{{Host}}"
      Port: 110

    matchers-condition: and
    matchers:
      - type: dsl
        dsl:
          - "success == true"

      - type: word
        words:
          - "HTTP/1.1"
        negative: true

    extractors:
      - type: dsl
        name:
        dsl:
          - response
# digest: 4a0a00473045022100c6e43b222a90204f57d0cb949f774e69b162741de5f8fa7e00e3486e3c8e459c022069add72265a2601f9c2e86d26367e0961a781520ac9eadb40d0c8f79636933aa:922c64590222798bb761d5b6d8e72950
Adding new templates from Unreleased Templates Repo 2024-03-09 14:23:42 +00:00			`id: pop3-capabilities-enum`

			`info:`
			`name: POP3 Capabilities - Enumeration`
			`author: pussycat0x`
			`severity: info`
			`description: \|`
			`POP3 capabilities are defined in RFC 2449. The CAPA command allows a client to ask a server what commands it supports and possibly any site-specific policy. Besides the list of supported commands, the IMPLEMENTATION string giving the server version may be available.`
			`reference:`
			`- https://nmap.org/nsedoc/scripts/pop3-capabilities.html`
			`metadata:`
			`max-request: 1`
			`shodan-query: "port:110"`
Revert "TemplateMan Update [Mon Apr 8 11:30:07 UTC 2024] :robot:" This reverts commit 433dda4ae5b824564b44075bb95a96ecdbe263a6. 2024-04-08 11:34:33 +00:00			`verified: true`
Adding new templates from Unreleased Templates Repo 2024-03-09 14:23:42 +00:00			`tags: js,network,pop3,enum`
Revert "TemplateMan Update [Mon Apr 8 11:30:07 UTC 2024] :robot:" This reverts commit 433dda4ae5b824564b44075bb95a96ecdbe263a6. 2024-04-08 11:34:33 +00:00
Adding new templates from Unreleased Templates Repo 2024-03-09 14:23:42 +00:00			`javascript:`
			`- code: \|`
			`let data = "CAPA\r\n"`
			`let c = require("nuclei/net");`
			let conn = c.Open('tcp', `${Host}:${Port}`);
			`conn.Send(data);`
			`let result = conn.RecvString();`
			`let cleanedData = result.replace(/\+OK Dovecot ready\.\r\n\+OK\|\r\n\|\s/g, " ");`
FP -Fix pop3 Capabilities 2024-04-05 07:56:00 +00:00			`console.log(Export(cleanedData))`
Adding new templates from Unreleased Templates Repo 2024-03-09 14:23:42 +00:00
			`args:`
			`Host: "{{Host}}"`
			`Port: 110`

FP -Fix pop3 Capabilities 2024-04-05 07:56:00 +00:00			`matchers-condition: and`
Adding new templates from Unreleased Templates Repo 2024-03-09 14:23:42 +00:00			`matchers:`
			`- type: dsl`
			`dsl:`
			`- "success == true"`

FP -Fix pop3 Capabilities 2024-04-05 07:56:00 +00:00			`- type: word`
			`words:`
			`- "HTTP/1.1"`
Update pop3-capabilities-enum.yaml 2024-04-05 08:00:24 +00:00			`negative: true`
FP -Fix pop3 Capabilities 2024-04-05 07:56:00 +00:00
Adding new templates from Unreleased Templates Repo 2024-03-09 14:23:42 +00:00			`extractors:`
			`- type: dsl`
			`name:`
			`dsl:`
			`- response`
Auto Template Signing [Fri Apr 5 08:27:00 UTC 2024] :robot: 2024-04-05 08:27:00 +00:00			`# digest: 4a0a00473045022100c6e43b222a90204f57d0cb949f774e69b162741de5f8fa7e00e3486e3c8e459c022069add72265a2601f9c2e86d26367e0961a781520ac9eadb40d0c8f79636933aa:922c64590222798bb761d5b6d8e72950`