Merge pull request #488 from pdelteil/master

apache tomcat version detecter
2020-09-27 13:56:14 +05:30 · 2020-09-27 13:56:14 +05:30 · 0d7e3454ca
parent 212e6f37ef 164075fb28
commit 0d7e3454ca
2 changed files with 56 additions and 0 deletions
--- a/technologies/apache-detect.yaml
+++ b/technologies/apache-detect.yaml
@ -0,0 +1,27 @@
+id: apache-version-detect
+info:
+  name: Apache Version
+  author: philippedelteil
+  description: Some Apache servers have the version on the response header. The OpenSSL version can be also obtained
+  severity: info
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}"
+    matchers-condition: and
+    matchers:
+
+      - type: regex
+        part: header
+        regex:
+          - "Apache+"
+
+      - type: status
+        status:
+          - 200
+
+    extractors:
+      - type: kval
+        part: header
+        kval:
+          - Server
--- a/technologies/tomcat-detect.yaml
+++ b/technologies/tomcat-detect.yaml
@ -0,0 +1,29 @@
+id: tomcat-version-detect
+info:
+  name: Detect Tomcat Version
+  author: philippedelteil
+  description: If an Tomcat instance is deployed on the target URL, when we send a request for
+    a non existent resource we receive a Tomcat error page with version.
+  severity: info
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/something_not_existing_"
+    matchers-condition: and
+    matchers:
+
+      - type: word
+        words:
+          - "Apache Tomcat"
+
+      - type: status
+        status:
+          - 404
+
+    extractors:
+      - type: regex
+        part: body
+        name: version
+        group: 2
+        regex:
+          - '(<h3>)(.*?)(</h3>)'