nuclei-templates/network/detection/starttls-mail-detect.yaml

id: starttls-mail-detect

info:
  name: STARTTLS Mail Server Detection
  author: r3dg33k,userdehghani
  severity: info
  description: |
    STARTTLS is an email protocol command that tells an email server that an email client, including an email client running in a web browser, wants to turn an existing insecure connection into a secure one.
  metadata:
    max-request: 4
  tags: mail,starttls,network,detect,smtp

tcp:
  - inputs:
      - data: "65686c6f20636865636b746c730a"
        type: hex
    read-size: 2048

    host:
      - "{{Hostname}}"
    port: 25,2525,465,587

    matchers:
      - type: word
        words:
          - "250-STARTTLS"
# digest: 490a004630440220727f60dda614097e482aeab0ed892781d6ecc9a8649f6d4b8cce021b88bd15c10220174928b249976388915a9d4b85214a5f9e32c9611b02bc3ad711e855c38cd370:922c64590222798bb761d5b6d8e72950
Added more templates 2021-06-28 11:13:01 +00:00			`id: starttls-mail-detect`

			`info:`
Update and rename network/starttls-mail-detect.yaml to network/detection/starttls-mail-detect.yaml 2022-09-20 07:46:33 +00:00			`name: STARTTLS Mail Server Detection`
Update missing smtp ports 2024-05-26 20:12:47 +00:00			`author: r3dg33k,userdehghani`
Added more templates 2021-06-28 11:13:01 +00:00			`severity: info`
Update starttls-mail-detect.yaml 2022-08-16 16:25:59 +00:00			`description: \|`
			`STARTTLS is an email protocol command that tells an email server that an email client, including an email client running in a web browser, wants to turn an existing insecure connection into a secure one.`
Added max request counter of each template 2023-04-28 08:11:21 +00:00			`metadata:`
Update missing smtp ports 2024-05-26 20:12:47 +00:00			`max-request: 4`
Revert "TemplateMan Update [Mon Apr 8 11:30:07 UTC 2024] :robot:" This reverts commit 433dda4ae5b824564b44075bb95a96ecdbe263a6. 2024-04-08 11:34:33 +00:00			`tags: mail,starttls,network,detect,smtp`
Added more templates 2021-06-28 11:13:01 +00:00
Refactoring the directory structure based on protocols (#7137) * moving http templates * updated cves.json * moved network CVEs * updated scripts * updated workflows * updated requests to http * replaced network to tcp --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-04-27 04:28:59 +00:00			`tcp:`
Added more templates 2021-06-28 11:13:01 +00:00			`- inputs:`
			`- data: "65686c6f20636865636b746c730a"`
			`type: hex`
Fixing errors in templates Related nuclei tickets: * #259 - dynamic key-value field support for template information * #940 - new infos in template * #834 * RES-84 2021-08-27 07:43:24 +00:00			`read-size: 2048`
Added more templates 2021-06-28 11:13:01 +00:00
			`host:`
			`- "{{Hostname}}"`
Update missing smtp ports 2024-05-26 20:12:47 +00:00			`port: 25,2525,465,587`
Added more templates 2021-06-28 11:13:01 +00:00
			`matchers:`
			`- type: word`
			`words:`
			`- "250-STARTTLS"`
Auto Template Signing [Mon May 27 06:27:58 UTC 2024] :robot: 2024-05-27 06:27:58 +00:00			`# digest: 490a004630440220727f60dda614097e482aeab0ed892781d6ecc9a8649f6d4b8cce021b88bd15c10220174928b249976388915a9d4b85214a5f9e32c9611b02bc3ad711e855c38cd370:922c64590222798bb761d5b6d8e72950`