nuclei-templates/exposures/files/ds_store.yaml

30 lines
484 B
YAML
Raw Normal View History

2020-08-21 11:09:30 +00:00
id: ds-store-file
2020-08-21 10:51:02 +00:00
info:
name: Directory Listing via DS_Store
2020-08-21 10:51:02 +00:00
author: 0w4ys
2020-08-21 11:09:30 +00:00
severity: info
2022-10-13 10:12:07 +00:00
tags: exposure,files
2020-08-21 10:51:02 +00:00
requests:
- method: GET
path:
- "{{BaseURL}}/.DS_Store"
2020-08-21 11:09:30 +00:00
2020-08-21 10:51:02 +00:00
matchers-condition: and
matchers:
- type: word
words:
- "\x00@\x00"
2020-08-21 11:09:30 +00:00
2020-08-21 10:51:02 +00:00
- type: status
status:
2020-08-21 11:09:30 +00:00
- 200
2020-08-21 10:51:02 +00:00
- type: word
words:
- "Accept-Ranges: bytes"
- "octet-stream"
condition: or
part: header