Create artifactory-anonymous-deploy.yaml

misconfiguration/artifactory-anonymous-deploy.yaml

@@ -0,0 +1,27 @@
+id: artifactory-anonymous-deploy
+
+info:
+  name: Artifactory repos with anonymous deploy permissions
+  reference: https://www.errno.fr/artifactory/Attacking_Artifactory.html
+  author: panch0r3d
+  severity: high
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/artifactory/ui/repodata?deploy=true"
+    headers:
+      User-Agent: "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:43.0) Gecko/20100101 Firefox/43.0"
+    matchers-condition: and
+    matchers:
+      - type: regex
+        regex:
+          - '(repoList).*?["].*["]'
+          - '(repoTypesList).*?["].*["]'
+        part: body
+    extractors:
+      - type: regex
+        part: body
+        regex:
+          - '(repoTypesList).*?["].*["]'
+          - '(repoList).*?["].*["]'