From 523bf9dc079ef23454154c036872672f48646d2f Mon Sep 17 00:00:00 2001 From: Yablargo Date: Mon, 6 Mar 2023 11:55:09 -0500 Subject: [PATCH 1/5] Add limesurvey detector --- technologies/limesurvey.yaml | 28 ++++++++++++++++++++++++++++ 1 file changed, 28 insertions(+) create mode 100644 technologies/limesurvey.yaml diff --git a/technologies/limesurvey.yaml b/technologies/limesurvey.yaml new file mode 100644 index 0000000000..88de5b7971 --- /dev/null +++ b/technologies/limesurvey.yaml @@ -0,0 +1,28 @@ +id: limesurvey-detect + +info: + name: limesurvey-favicon-detection + author: Matt Galligan + severity: info + reference: + tags: tech,limesurvey + +requests: + - method: GET + path: + - "{{BaseURL}}/index.php?r=surveys/publiclist" + + host-redirects: true + max-redirects: 2 + + matchers: + - type: word + words: + - "The following surveys are available" + - "LimeSurvey" + condition: or + case-insensitive: true + + - type: status + status: + - 200 From 86a9d9e683eaec4ea930b986ea70585de00f38ed Mon Sep 17 00:00:00 2001 From: Yablargo Date: Mon, 6 Mar 2023 12:06:01 -0500 Subject: [PATCH 2/5] Fix yaml linting Fix yaml linting --- technologies/limesurvey.yaml | 18 +++++++----------- 1 file changed, 7 insertions(+), 11 deletions(-) diff --git a/technologies/limesurvey.yaml b/technologies/limesurvey.yaml index 88de5b7971..9f41734cf2 100644 --- a/technologies/limesurvey.yaml +++ b/technologies/limesurvey.yaml @@ -1,28 +1,24 @@ +--- id: limesurvey-detect - info: name: limesurvey-favicon-detection author: Matt Galligan severity: info - reference: + reference: null tags: tech,limesurvey - requests: - method: GET - path: - - "{{BaseURL}}/index.php?r=surveys/publiclist" - + path: + - "{{BaseURL}}/index.php?r=surveys/publiclist" host-redirects: true max-redirects: 2 - matchers: - type: word - words: - - "The following surveys are available" - - "LimeSurvey" + words: + - The following surveys are available + - LimeSurvey condition: or case-insensitive: true - - type: status status: - 200 From 92f63e246b9e995a30edeaf444953adb9a07e036 Mon Sep 17 00:00:00 2001 From: Yablargo Date: Mon, 6 Mar 2023 14:37:56 -0500 Subject: [PATCH 3/5] Update limesurvey.yaml add "and" condition to matchers, whoops! --- technologies/limesurvey.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/technologies/limesurvey.yaml b/technologies/limesurvey.yaml index 9f41734cf2..74d3c83825 100644 --- a/technologies/limesurvey.yaml +++ b/technologies/limesurvey.yaml @@ -12,6 +12,7 @@ requests: - "{{BaseURL}}/index.php?r=surveys/publiclist" host-redirects: true max-redirects: 2 + matchers-condition: and matchers: - type: word words: From d1ef1d638118ca8d0407f5748d6be25ea87fff7c Mon Sep 17 00:00:00 2001 From: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com> Date: Wed, 8 Mar 2023 23:19:35 +0530 Subject: [PATCH 4/5] updated matchers and info --- technologies/limesurvey-detect.yaml | 33 +++++++++++++++++++++++++++++ technologies/limesurvey.yaml | 25 ---------------------- 2 files changed, 33 insertions(+), 25 deletions(-) create mode 100644 technologies/limesurvey-detect.yaml delete mode 100644 technologies/limesurvey.yaml diff --git a/technologies/limesurvey-detect.yaml b/technologies/limesurvey-detect.yaml new file mode 100644 index 0000000000..1db009f550 --- /dev/null +++ b/technologies/limesurvey-detect.yaml @@ -0,0 +1,33 @@ +id: limesurvey-detect + +info: + name: LimeSurvey Survey Software - Detect + author: Matt Galligan + severity: info + description: | + Limesurvey is the number one open-source survey software. Advanced features like branching and multiple question types make it a valuable partner for survey-creation. + reference: + - https://github.com/LimeSurvey/LimeSurvey + tags: tech,limesurvey + +requests: + - method: GET + path: + - "{{BaseURL}}" + + host-redirects: true + max-redirects: 2 + matchers-condition: and + matchers: + - type: word + words: + - 'content="LimeSurvey' + - 'alt="LimeSurvey Survey Software' + - 'data-limesurvey-lang=' + - 'alt="Powered by LimeSurvey' + condition: or + case-insensitive: true + + - type: status + status: + - 200 diff --git a/technologies/limesurvey.yaml b/technologies/limesurvey.yaml deleted file mode 100644 index 74d3c83825..0000000000 --- a/technologies/limesurvey.yaml +++ /dev/null @@ -1,25 +0,0 @@ ---- -id: limesurvey-detect -info: - name: limesurvey-favicon-detection - author: Matt Galligan - severity: info - reference: null - tags: tech,limesurvey -requests: - - method: GET - path: - - "{{BaseURL}}/index.php?r=surveys/publiclist" - host-redirects: true - max-redirects: 2 - matchers-condition: and - matchers: - - type: word - words: - - The following surveys are available - - LimeSurvey - condition: or - case-insensitive: true - - type: status - status: - - 200 From 86738308909f14e5f0555492f31716feba06a9a7 Mon Sep 17 00:00:00 2001 From: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com> Date: Wed, 8 Mar 2023 23:22:51 +0530 Subject: [PATCH 5/5] added metadata --- technologies/limesurvey-detect.yaml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/technologies/limesurvey-detect.yaml b/technologies/limesurvey-detect.yaml index 1db009f550..29550f1a8d 100644 --- a/technologies/limesurvey-detect.yaml +++ b/technologies/limesurvey-detect.yaml @@ -8,6 +8,9 @@ info: Limesurvey is the number one open-source survey software. Advanced features like branching and multiple question types make it a valuable partner for survey-creation. reference: - https://github.com/LimeSurvey/LimeSurvey + metadata: + verified: true + shodan-query: http.favicon.hash:1781653957 tags: tech,limesurvey requests: