nuclei-templates/network/misconfig/erlang-daemon.yaml

id: erlang-daemon

info:
  name: Erlang Port Mapper Daemon
  author: pussycat0x
  severity: low
  description: |
    The erlang port mapper daemon is used to coordinate distributed erlang instances. His job is to keep track of which node name listens on which address. Hence, epmd map symbolic node names to machine addresses.
  reference:
    - https://nmap.org/nsedoc/scripts/epmd-info.html
    - https://book.hacktricks.xyz/network-services-pentesting/4369-pentesting-erlang-port-mapper-daemon-epmd
    - https://medium.com/@_sadshade/couchdb-erlang-and-cookies-rce-on-default-settings-b1e9173a4bcd
  metadata:
    max-request: 1
    shodan-query: product:"Erlang Port Mapper Daemon"
    verified: true
  tags: demon,enum,erlang,epmd

tcp:
  - inputs:
      - data: "\x00\x01\x6e"

    host:
      - "{{Hostname}}"
    port: 4369

    matchers:
      - type: word
        words:
          - "HTTP/1.1"
        negative: true

    extractors:
      - type: dsl
        name: default-instances
        dsl:
          - trim(raw, '[ ]')
# digest: 4a0a0047304502205e3d32aaa31805fb16eb5543fd1703da066ed645af6aadfa0048cbec4525f7da022100dcf07bf261985800a8875b8db6ec143915468d2c165a99ff3ee32319011ca354:922c64590222798bb761d5b6d8e72950
rename template 2023-03-25 16:28:41 +00:00			`id: erlang-daemon`
Erlang Port Mapper Daemon 2023-03-24 16:28:12 +00:00
			`info:`
			`name: Erlang Port Mapper Daemon`
			`author: pussycat0x`
			`severity: low`
			`description: \|`
TemplateMan Update [Sun Jan 14 13:49:26 UTC 2024] :robot: 2024-01-14 13:49:27 +00:00			`The erlang port mapper daemon is used to coordinate distributed erlang instances. His job is to keep track of which node name listens on which address. Hence, epmd map symbolic node names to machine addresses.`
Erlang Port Mapper Daemon 2023-03-24 16:28:12 +00:00			`reference:`
			`- https://nmap.org/nsedoc/scripts/epmd-info.html`
			`- https://book.hacktricks.xyz/network-services-pentesting/4369-pentesting-erlang-port-mapper-daemon-epmd`
			`- https://medium.com/@_sadshade/couchdb-erlang-and-cookies-rce-on-default-settings-b1e9173a4bcd`
			`metadata:`
TemplateMan Update [Sun Jan 14 13:49:26 UTC 2024] :robot: 2024-01-14 13:49:27 +00:00			`max-request: 1`
Erlang Port Mapper Daemon 2023-03-24 16:28:12 +00:00			`shodan-query: product:"Erlang Port Mapper Daemon"`
Revert "TemplateMan Update [Mon Apr 8 11:30:07 UTC 2024] :robot:" This reverts commit 433dda4ae5b824564b44075bb95a96ecdbe263a6. 2024-04-08 11:34:33 +00:00			`verified: true`
			`tags: demon,enum,erlang,epmd`

misc changes 2024-01-14 13:58:21 +00:00			`tcp:`
Erlang Port Mapper Daemon 2023-03-24 16:28:12 +00:00			`- inputs:`
indentation -fix 2023-03-24 16:31:02 +00:00			`- data: "\x00\x01\x6e"`
Erlang Port Mapper Daemon 2023-03-24 16:28:12 +00:00
			`host:`
port: - update 2023-12-29 13:10:17 +00:00			`- "{{Hostname}}"`
			`port: 4369`
Erlang Port Mapper Daemon 2023-03-24 16:28:12 +00:00
FP-Fix erlang-daemon.yaml 2024-05-24 09:32:24 +00:00			`matchers:`
			`- type: word`
			`words:`
			`- "HTTP/1.1"`
			`negative: true`

Erlang Port Mapper Daemon 2023-03-24 16:28:12 +00:00			`extractors:`
Update erlang-daemon.yaml 2023-12-29 08:58:48 +00:00			`- type: dsl`
Update and rename network/erlang-daemon.yaml to network/misconfig/erlang-daemon.yaml 2023-12-29 14:23:01 +00:00			`name: default-instances`
Update erlang-daemon.yaml 2023-12-29 08:58:48 +00:00			`dsl:`
			`- trim(raw, '[ ]')`
Auto Template Signing [Fri May 24 10:19:46 UTC 2024] :robot: 2024-05-24 10:19:46 +00:00			`# digest: 4a0a0047304502205e3d32aaa31805fb16eb5543fd1703da066ed645af6aadfa0048cbec4525f7da022100dcf07bf261985800a8875b8db6ec143915468d2c165a99ff3ee32319011ca354:922c64590222798bb761d5b6d8e72950`