daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #3629 from projectdiscovery/jsf-detection.yaml 

Update jsf-detection.yaml
patch-1
Prince Chaddha 2022-01-29 14:06:14 +05:30 committed by GitHub
parent a7998e62e9 cad8c8c864
commit 1afc7ba0ca
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 21 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
technologies/jsf-detection.yaml
View File

@ -2,10 +2,10 @@ id: jsf-detection
info:
name: JavaServer Faces Detection
author: Moritz Nentwig
author: brenocss,Moritz Nentwig
severity: info
description: Searches for JavaServer Faces content on a URL.
tags: jsf,tech
tags: jsf,tech,primefaces,richfaces
requests:
- method: GET
@ -14,9 +14,23 @@ requests:
redirects: true
max-redirects: 2
matchers-condition: or
matchers:
- type: word
words:
- "javax.faces.resource"
- "javax.faces.ViewState"
condition: or
- type: dsl
name: javafaces
dsl:
- "(contains(body, 'javax.faces.resource') || contains(body, 'javax.faces.ViewState'))"
- type: dsl
name: primefaces
dsl:
- "contains(body, 'primefaces')"
- "contains(body, 'javax.faces.resource') || contains(body, 'javax.faces.ViewState')"
condition: and
- type: dsl
name: richfaces
dsl:
- "contains(body, 'richfaces')"
- "contains(body, 'javax.faces.resource') || contains(body, 'javax.faces.ViewState')"
condition: and