nuclei-templates/file/logs/django-framework-exceptions...

id: django-framework-exceptions

info:
  name: Django Framework Exceptions
  author: geeknik
  severity: medium
  description: Detects suspicious Django web application framework exceptions that could indicate exploitation attempts
  reference:
    - https://docs.djangoproject.com/en/1.11/ref/exceptions/
    - https://docs.djangoproject.com/en/1.11/topics/logging/#django-security
  tags: file,logs,django
file:
  - extensions:
      - all

    extractors:
      - type: regex
        name: exception
        part: body
        regex:
          - 'SuspiciousOperation'
          - 'DisallowedHost'
          - 'DisallowedModelAdminLookup'
          - 'DisallowedModelAdminToField'
          - 'DisallowedRedirect'
          - 'InvalidSessionKey'
          - 'RequestDataTooBig'
          - 'SuspiciousFileOperation'
          - 'SuspiciousMultipartForm'
          - 'SuspiciousSession'
          - 'TooManyFieldsSent'
          - 'PermissionDenied'

# digest: 4a0a0047304502205f33a921687fc710f1271b09e50c6f9fbca2ca07919f6239a8972da5e80e4ece022100bfc39ac2cdb85b270eb0d92321b0809a68df57f8956a06dcaf6ac4a1e4b87e2f:922c64590222798bb761d5b6d8e72950
Create django-framework-exceptions.yaml 2021-11-01 18:19:36 +00:00			`id: django-framework-exceptions`

			`info:`
			`name: Django Framework Exceptions`
			`author: geeknik`
refactor: Description field uniformization * info field reorder * reference values refactored to list * added new lines after the id and before the protocols * removed extra new lines * split really long descriptions to multiple lines (part 1) * other minor fixes 2022-04-22 10:38:41 +00:00			`severity: medium`
			`description: Detects suspicious Django web application framework exceptions that could indicate exploitation attempts`
Create django-framework-exceptions.yaml 2021-11-01 18:19:36 +00:00			`reference:`
			`- https://docs.djangoproject.com/en/1.11/ref/exceptions/`
			`- https://docs.djangoproject.com/en/1.11/topics/logging/#django-security`
			`tags: file,logs,django`
			`file:`
			`- extensions:`
			`- all`

			`extractors:`
			`- type: regex`
			`name: exception`
			`part: body`
			`regex:`
			`- 'SuspiciousOperation'`
			`- 'DisallowedHost'`
			`- 'DisallowedModelAdminLookup'`
			`- 'DisallowedModelAdminToField'`
			`- 'DisallowedRedirect'`
			`- 'InvalidSessionKey'`
			`- 'RequestDataTooBig'`
			`- 'SuspiciousFileOperation'`
			`- 'SuspiciousMultipartForm'`
			`- 'SuspiciousSession'`
			`- 'TooManyFieldsSent'`
			`- 'PermissionDenied'`
TemplateMan Update [Fri Oct 20 11:41:12 UTC 2023] :robot: 2023-10-20 11:41:13 +00:00
			`# digest: 4a0a0047304502205f33a921687fc710f1271b09e50c6f9fbca2ca07919f6239a8972da5e80e4ece022100bfc39ac2cdb85b270eb0d92321b0809a68df57f8956a06dcaf6ac4a1e4b87e2f:922c64590222798bb761d5b6d8e72950`