nuclei-templates/javascript/enumeration/pop3/pop3-capabilities-enum.yaml

id: pop3-capabilities-enum

info:
  name: POP3 Capabilities - Enumeration
  author: pussycat0x
  severity: info
  description: |
    POP3 capabilities are defined in RFC 2449. The CAPA command allows a client to ask a server what commands it supports and possibly any site-specific policy. Besides the list of supported commands, the IMPLEMENTATION string giving the server version may be available.
  reference:
    - https://nmap.org/nsedoc/scripts/pop3-capabilities.html
  metadata:
    verified: true
    max-request: 1
    shodan-query: "port:110"
  tags: js,network,pop3,enum
javascript:
  - code: |
      let data = "CAPA\r\n"
      let c = require("nuclei/net");
      let conn = c.Open('tcp', `${Host}:${Port}`);
      conn.Send(data);
      let result = conn.RecvString();
      let cleanedData = result.replace(/\+OK Dovecot ready\.\r\n\+OK|\r\n|\s/g, " ");
      console.log(Export(cleanedData))

    args:
      Host: "{{Host}}"
      Port: 110

    matchers-condition: and
    matchers:
      - type: dsl
        dsl:
          - "success == true"

      - type: word
        words:
          - "HTTP/1.1"
        negative: true

    extractors:
      - type: dsl
        name:
        dsl:
          - response
# digest: 490a0046304402206223942fc9db65ba597bbfe3dff6c740682b72facc4a5aca082b4dd0617a98900220776701bd49d2506927fdf0dc468b452a7f5a8ac17dc2ca53bc18b48b9c1942b4:922c64590222798bb761d5b6d8e72950
Adding new templates from Unreleased Templates Repo 2024-03-09 14:23:42 +00:00			`id: pop3-capabilities-enum`

			`info:`
			`name: POP3 Capabilities - Enumeration`
			`author: pussycat0x`
			`severity: info`
			`description: \|`
			`POP3 capabilities are defined in RFC 2449. The CAPA command allows a client to ask a server what commands it supports and possibly any site-specific policy. Besides the list of supported commands, the IMPLEMENTATION string giving the server version may be available.`
			`reference:`
			`- https://nmap.org/nsedoc/scripts/pop3-capabilities.html`
			`metadata:`
TemplateMan Update [Fri Jun 7 10:04:28 UTC 2024] :robot: 2024-06-07 10:04:29 +00:00			`verified: true`
Adding new templates from Unreleased Templates Repo 2024-03-09 14:23:42 +00:00			`max-request: 1`
			`shodan-query: "port:110"`
			`tags: js,network,pop3,enum`
			`javascript:`
			`- code: \|`
			`let data = "CAPA\r\n"`
			`let c = require("nuclei/net");`
			let conn = c.Open('tcp', `${Host}:${Port}`);
			`conn.Send(data);`
			`let result = conn.RecvString();`
			`let cleanedData = result.replace(/\+OK Dovecot ready\.\r\n\+OK\|\r\n\|\s/g, " ");`
FP -Fix pop3 Capabilities 2024-04-05 07:56:00 +00:00			`console.log(Export(cleanedData))`
Adding new templates from Unreleased Templates Repo 2024-03-09 14:23:42 +00:00
			`args:`
			`Host: "{{Host}}"`
			`Port: 110`

FP -Fix pop3 Capabilities 2024-04-05 07:56:00 +00:00			`matchers-condition: and`
Adding new templates from Unreleased Templates Repo 2024-03-09 14:23:42 +00:00			`matchers:`
			`- type: dsl`
			`dsl:`
			`- "success == true"`

FP -Fix pop3 Capabilities 2024-04-05 07:56:00 +00:00			`- type: word`
			`words:`
			`- "HTTP/1.1"`
Update pop3-capabilities-enum.yaml 2024-04-05 08:00:24 +00:00			`negative: true`
FP -Fix pop3 Capabilities 2024-04-05 07:56:00 +00:00
Adding new templates from Unreleased Templates Repo 2024-03-09 14:23:42 +00:00			`extractors:`
			`- type: dsl`
			`name:`
			`dsl:`
			`- response`
Auto Template Signing [Sat Jun 8 16:02:16 UTC 2024] :robot: 2024-06-08 16:02:17 +00:00			`# digest: 490a0046304402206223942fc9db65ba597bbfe3dff6c740682b72facc4a5aca082b4dd0617a98900220776701bd49d2506927fdf0dc468b452a7f5a8ac17dc2ca53bc18b48b9c1942b4:922c64590222798bb761d5b6d8e72950`