nuclei-templates/token-spray/api-abuseipdb.yaml

id: api-abuseipdb

info:
  name: AbuseIPDB API Test
  author: daffainfo
  severity: info
  reference:
    - https://docs.abuseipdb.com/
    - https://github.com/daffainfo/all-about-apikey/blob/main/Anti-Malware/AbuseIPDB.md
  tags: token-spray,abuseipdb

self-contained: true
requests:
  - raw:
      - |
        POST https://api.abuseipdb.com/api/v2/report HTTP/1.1
        Host: api.abuseipdb.com
        Key: {{token}}
        Accept: application/json
        Content-Type: application/x-www-form-urlencoded
        Content-Length: 16

        ip=127.0.0.1&categories=18,22&comment=SSH%20login%20attempts%20with%20user%20root.

    matchers:
      - type: word
        part: body
        words:
          - 'data":'
          - 'ipAddress":'
        condition: and
Add 10 token-spray templates 2021-10-29 11:24:17 +00:00			`id: api-abuseipdb`

			`info:`
			`name: AbuseIPDB API Test`
			`author: daffainfo`
			`severity: info`
Adding references 2021-11-06 04:40:49 +00:00			`reference:`
			`- https://docs.abuseipdb.com/`
			`- https://github.com/daffainfo/all-about-apikey/blob/main/Anti-Malware/AbuseIPDB.md`
Add 10 token-spray templates 2021-10-29 11:24:17 +00:00			`tags: token-spray,abuseipdb`

			`self-contained: true`
			`requests:`
			`- raw:`
			`- \|`
Update api-abuseipdb.yaml 2021-10-29 17:03:59 +00:00			`POST https://api.abuseipdb.com/api/v2/report HTTP/1.1`
Add 10 token-spray templates 2021-10-29 11:24:17 +00:00			`Host: api.abuseipdb.com`
			`Key: {{token}}`
			`Accept: application/json`
			`Content-Type: application/x-www-form-urlencoded`
			`Content-Length: 16`

			`ip=127.0.0.1&categories=18,22&comment=SSH%20login%20attempts%20with%20user%20root.`

			`matchers:`
Update api-abuseipdb.yaml 2021-10-29 17:03:59 +00:00			`- type: word`
			`part: body`
			`words:`
			`- 'data":'`
			`- 'ipAddress":'`
			`condition: and`