nuclei-templates/exposures/configs/configuration-listing.yaml

26 lines
556 B
YAML
Raw Normal View History

2021-07-07 13:22:35 +00:00
id: configuration-listing
2021-07-05 19:17:51 +00:00
info:
2021-07-07 13:22:35 +00:00
name: Sensitive Configuration Files Listing
2021-07-05 19:17:51 +00:00
author: j33n1k4
severity: medium
description: directory listing of sensitive files
reference: https://www.exploit-db.com/ghdb/7014
2021-07-26 08:55:43 +00:00
tags: config,listing,exposure
2021-07-05 19:17:51 +00:00
requests:
- method: GET
path:
- "{{BaseURL}}/config/"
2021-07-07 13:22:35 +00:00
matchers-condition: and
2021-07-05 19:17:51 +00:00
matchers:
- type: word
words:
2021-07-07 13:22:35 +00:00
- "Index of /configs"
- "Parent Directory"
condition: and
2021-07-05 19:17:51 +00:00
- type: status
status:
2021-07-07 13:22:35 +00:00
- 200