updated matcher, added desc. & ref.
Ritik Chaddha
GitHub
parent
83093c60a9
commit
0fbc5c444a
|
|
@ -1,15 +1,17 @@
|
||||||
id: dozzle-container-logs
|
id: dozzle-container-logs
|
||||||
|
|
||||||
info:
|
info:
|
||||||
name: Dozzle container logs
|
name: Dozzle - Logs Exposure
|
||||||
author: theabhinavgaur
|
author: theabhinavgaur
|
||||||
severity: medium
|
severity: medium
|
||||||
|
description: Dozzle is a small lightweight application with a web based interface to monitor Docker logs. It doesn’t store any log files. It is for live monitoring of your container logs only.
|
||||||
|
reference:
|
||||||
|
- https://github.com/amir20/dozzle
|
||||||
|
- https://dozzle.dev/
|
||||||
metadata:
|
metadata:
|
||||||
verified: true
|
verified: true
|
||||||
shodan-query:
|
shodan-query: http.title:"Dozzle"
|
||||||
- http.title:"Dozzle"
|
tags: exposure,logs,dozzle,docker
|
||||||
tags: information-disclsoure,logs,docker
|
|
||||||
|
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- method: GET
|
- method: GET
|
||||||
|
|
@ -22,14 +24,9 @@ requests:
|
||||||
part: body
|
part: body
|
||||||
words:
|
words:
|
||||||
- '"authorizationNeeded": "false"'
|
- '"authorizationNeeded": "false"'
|
||||||
- '"secured": "false"'
|
- 'Dozzle'
|
||||||
condition: and
|
condition: and
|
||||||
|
|
||||||
- type: word
|
|
||||||
part: content_type
|
|
||||||
words:
|
|
||||||
- 'text/html'
|
|
||||||
|
|
||||||
- type: status
|
- type: status
|
||||||
status:
|
status:
|
||||||
- 200
|
- 200
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue