From 08196b27be80b73539705b2b0210ed2037de673f Mon Sep 17 00:00:00 2001 From: pentesttools-com Date: Thu, 17 Aug 2023 17:14:19 +0300 Subject: [PATCH] Added description fields where missing in the ssl templates --- ssl/detect-ssl-issuer.yaml | 2 ++ ssl/mismatched-ssl-certificate.yaml | 2 ++ ssl/ssl-dns-names.yaml | 2 ++ 3 files changed, 6 insertions(+) diff --git a/ssl/detect-ssl-issuer.yaml b/ssl/detect-ssl-issuer.yaml index f6c705c84c..961a482eca 100644 --- a/ssl/detect-ssl-issuer.yaml +++ b/ssl/detect-ssl-issuer.yaml @@ -4,6 +4,8 @@ info: name: Detect SSL Certificate Issuer author: Lingtren severity: info + description: | + Extract the issuer's organization from the target's certificate. Issuers are entities which sign and distribute certificates. tags: ssl metadata: max-request: 1 diff --git a/ssl/mismatched-ssl-certificate.yaml b/ssl/mismatched-ssl-certificate.yaml index 48440823ee..bf18aeace0 100644 --- a/ssl/mismatched-ssl-certificate.yaml +++ b/ssl/mismatched-ssl-certificate.yaml @@ -6,6 +6,8 @@ info: severity: low reference: - https://www.invicti.com/web-vulnerability-scanner/vulnerabilities/ssl-certificate-name-hostname-mismatch/ + description: | + Mismatched certificates occur when there is inconsistency between the common name to which the certificate was issued and the domain name in the URL. This issue impacts the trust value of the affected website. tags: ssl,mismatched,tls metadata: max-request: 1 diff --git a/ssl/ssl-dns-names.yaml b/ssl/ssl-dns-names.yaml index 67b0bf89d0..3fa46592ad 100644 --- a/ssl/ssl-dns-names.yaml +++ b/ssl/ssl-dns-names.yaml @@ -4,6 +4,8 @@ info: name: SSL DNS Names author: pdteam severity: info + description: | + Extract the Subject Alternative Name (SAN) from the target's certificate. SAN facilitates the usage of additional hostnames with the same certificate. tags: ssl metadata: max-request: 1