nuclei-templates/http/misconfiguration/exposed-docker-api.yaml

32 lines
603 B
YAML
Raw Normal View History

2020-06-17 17:13:31 +00:00
id: exposed-docker-api
2020-06-17 15:28:37 +00:00
info:
name: Exposed Docker API
2021-06-09 12:20:56 +00:00
author: furkansenan,dwisiswant0
2020-08-03 21:52:00 +00:00
severity: info
tags: docker,unauth,devops,misconfig
metadata:
max-request: 2
2020-06-17 15:28:37 +00:00
http:
2020-06-17 15:28:37 +00:00
- method: GET
path:
- "http://{{Hostname}}/version"
- "http://{{Hostname}}/v1.24/version"
2020-09-20 12:57:43 +00:00
matchers-condition: and
2020-06-17 15:28:37 +00:00
matchers:
- type: word
words:
- "application/json"
part: header
- type: word
words:
- "KernelVersion"
- "BuildTime"
condition: and
2020-06-17 15:28:37 +00:00
part: body
- type: status
status:
2021-05-26 21:14:54 +00:00
- 200