diff --git a/exposures/configs/proxy-wpad-exposure.yaml b/exposures/configs/proxy-wpad-exposure.yaml new file mode 100644 index 0000000000..82d7108188 --- /dev/null +++ b/exposures/configs/proxy-wpad-exposure.yaml @@ -0,0 +1,28 @@ +id: proxy-wpad-exposure + +info: + name: Proxy WPAD Configuration Exposure + author: DhiyaneshDk + severity: low + metadata: + verified: true + shodan-query: html:"wpad.dat" + tags: config,exposure,proxy + +requests: + - method: GET + path: + - "{{BaseURL}}/wpad.dat" + + matchers-condition: and + matchers: + - type: word + words: + - "FindProxyForURL" + - "url" + - "host" + condition: and + + - type: status + status: + - 200 diff --git a/exposures/files/npm-shrinkwrap-exposure.yaml b/exposures/files/npm-shrinkwrap-exposure.yaml new file mode 100644 index 0000000000..7326634562 --- /dev/null +++ b/exposures/files/npm-shrinkwrap-exposure.yaml @@ -0,0 +1,32 @@ +id: npm-shrinkwrap-exposure + +info: + name: Node Shrinkwrap Exposure + author: DhiyaneshDk + severity: info + metadata: + verified: true + shodan-query: html:"npm-shrinkwrap.json" + tags: config,exposure,npm + +requests: + - method: GET + path: + - "{{BaseURL}}/npm-shrinkwrap.json" + + matchers-condition: and + matchers: + - type: word + words: + - "version" + - "dependencies" + condition: and + + - type: word + part: header + words: + - "application/json" + + - type: status + status: + - 200 diff --git a/exposures/files/phpunit-result-cache-exposure.yaml b/exposures/files/phpunit-result-cache-exposure.yaml new file mode 100644 index 0000000000..d0807e16b4 --- /dev/null +++ b/exposures/files/phpunit-result-cache-exposure.yaml @@ -0,0 +1,25 @@ +id: phpunit-result-cache-exposure + +info: + name: PHPUnit Result Cache File Exposure + author: DhiyaneshDk + severity: low + metadata: + verified: true + shodan-query: ".phpunit.result.cache" + tags: config,exposure,devops + +requests: + - method: GET + path: + - "{{BaseURL}}/.phpunit.result.cache" + + matchers-condition: and + matchers: + - type: word + words: + - '"defects"' + + - type: status + status: + - 200 diff --git a/exposures/files/styleci-yml-disclosure.yaml b/exposures/files/styleci-yml-disclosure.yaml new file mode 100644 index 0000000000..aa9cf7fb71 --- /dev/null +++ b/exposures/files/styleci-yml-disclosure.yaml @@ -0,0 +1,28 @@ +id: styleci-yml-disclosure + +info: + name: StyleCi Yaml File Disclosure + author: DhiyaneshDk + severity: info + metadata: + verified: true + shodan-query: ".styleci.yml" + tags: config,exposure,devops + +requests: + - method: GET + path: + - "{{BaseURL}}/.styleci.yml" + + matchers-condition: and + matchers: + - type: word + words: + - "php" + - "preset" + - "disabled" + condition: and + + - type: status + status: + - 200 diff --git a/exposures/files/webpack-mix-js.yaml b/exposures/files/webpack-mix-js.yaml new file mode 100644 index 0000000000..dacf9a00c1 --- /dev/null +++ b/exposures/files/webpack-mix-js.yaml @@ -0,0 +1,27 @@ +id: webpack-mix-js + +info: + name: Webpack Mix File Disclosure + author: DhiyaneshDk + severity: info + metadata: + verified: true + shodan-query: html:"webpack.mix.js" + tags: config,exposure,devops + +requests: + - method: GET + path: + - "{{BaseURL}}/webpack.mix.js" + + matchers-condition: and + matchers: + - type: word + words: + - "Mix Asset Management" + - "const mix" + condition: and + + - type: status + status: + - 200 diff --git a/exposures/files/wp-cli-exposure.yaml b/exposures/files/wp-cli-exposure.yaml new file mode 100644 index 0000000000..08b73b1dd7 --- /dev/null +++ b/exposures/files/wp-cli-exposure.yaml @@ -0,0 +1,27 @@ +id: wp-cli-exposure + +info: + name: WP-CLI Yaml File Exposure + author: DhiyaneshDk + severity: info + metadata: + verified: true + shodan-query: html:"wp-cli.yml" + tags: config,exposure,wp-cli + +requests: + - method: GET + path: + - "{{BaseURL}}/wp-cli.yml" + + matchers-condition: and + matchers: + - type: word + words: + - "apache_modules:" + - "mod_rewrite" + condition: and + + - type: status + status: + - 200