33 lines
1016 B
YAML
33 lines
1016 B
YAML
|
id: ghe-encrypt-saml
|
||
|
|
||
|
info:
|
||
|
name: GitHub Enterprise - Encrypted SAML
|
||
|
author: rootxharsh,iamnoooob,pdresearch
|
||
|
severity: info
|
||
|
description: |
|
||
|
This template checks if Encrypted SAML (Security Assertion Markup Language) is enabled on a GitHub Enterprise instance.
|
||
|
reference:
|
||
|
- https://docs.github.com/en/enterprise-server@3.10/admin/managing-iam/using-saml-for-enterprise-iam/enabling-encrypted-assertions
|
||
|
metadata:
|
||
|
verified: true
|
||
|
max-request: 1
|
||
|
shodan-query: title:"GitHub Enterprise"
|
||
|
tags: github,ghe,saml
|
||
|
|
||
|
http:
|
||
|
- method: GET
|
||
|
path:
|
||
|
- "{{BaseURL}}/saml/metadata"
|
||
|
|
||
|
redirects: true
|
||
|
max-redirects: 2
|
||
|
|
||
|
matchers:
|
||
|
- type: word
|
||
|
part: body
|
||
|
words:
|
||
|
- EntityDescriptor
|
||
|
- KeyDescriptor
|
||
|
- use="encryption"
|
||
|
condition: and
|
||
|
# digest: 4a0a00473045022100b49f48cfbe5632ae6b2170b921ba5d2473199b71ba755bed29ecac7229ccd81d02202aa8153bd4abb1a4865bb09913cb458421d278869b4a3484126666ab8498e6a2:922c64590222798bb761d5b6d8e72950
|