From 1667fd79cbecd8a0585eea3949d1c0ceb6a2634a Mon Sep 17 00:00:00 2001 From: Prince Chaddha Date: Mon, 7 Mar 2022 03:05:17 +0530 Subject: [PATCH 1/5] Update kibana-panel.yaml --- exposed-panels/kibana-panel.yaml | 9 ++++++--- 1 file changed, 6 insertions(+), 3 deletions(-) diff --git a/exposed-panels/kibana-panel.yaml b/exposed-panels/kibana-panel.yaml index ad3530bfef..a8976daca7 100644 --- a/exposed-panels/kibana-panel.yaml +++ b/exposed-panels/kibana-panel.yaml @@ -13,14 +13,17 @@ requests: path: - "{{BaseURL}}/login" + redirects: true + max-redirects: 2 matchers-condition: or matchers: - type: word part: body words: - "Kibana" + - "Elastic" - - type: word + - type: regex part: header - words: - - "Kbn-Name:" + regex: + - '(?i)(Kbn-Name)' From fab7904544efd9e3c870d232640a2d5e74a21776 Mon Sep 17 00:00:00 2001 From: Prince Chaddha Date: Mon, 7 Mar 2022 03:37:29 +0530 Subject: [PATCH 2/5] Update kibana-panel.yaml --- exposed-panels/kibana-panel.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/exposed-panels/kibana-panel.yaml b/exposed-panels/kibana-panel.yaml index a8976daca7..74bef2b479 100644 --- a/exposed-panels/kibana-panel.yaml +++ b/exposed-panels/kibana-panel.yaml @@ -2,7 +2,7 @@ id: kibana-panel info: name: Kibana Panel Login - author: petruknisme,daffainfo + author: petruknisme,daffainfo,c-sh0 severity: info metadata: shodan-query: http.title:"Kibana" From f6af104d37f39207826bb394c8166acbc0435f13 Mon Sep 17 00:00:00 2001 From: Prince Chaddha Date: Tue, 8 Mar 2022 11:03:36 +0530 Subject: [PATCH 3/5] Update kibana-panel.yaml --- exposed-panels/kibana-panel.yaml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/exposed-panels/kibana-panel.yaml b/exposed-panels/kibana-panel.yaml index 74bef2b479..fc3bc7f490 100644 --- a/exposed-panels/kibana-panel.yaml +++ b/exposed-panels/kibana-panel.yaml @@ -22,6 +22,8 @@ requests: words: - "Kibana" - "Elastic" + - "Kibana Login" + condition: or - type: regex part: header From 90252d1c9591653d429cb37f62a6a5922012bf3c Mon Sep 17 00:00:00 2001 From: Prince Chaddha Date: Fri, 11 Mar 2022 01:38:10 +0530 Subject: [PATCH 4/5] Update kibana-panel.yaml --- exposed-panels/kibana-panel.yaml | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/exposed-panels/kibana-panel.yaml b/exposed-panels/kibana-panel.yaml index fc3bc7f490..13126eb967 100644 --- a/exposed-panels/kibana-panel.yaml +++ b/exposed-panels/kibana-panel.yaml @@ -11,8 +11,11 @@ info: requests: - method: GET path: + - "{{BaseURL}}" - "{{BaseURL}}/login" - + - "{{BaseURL}}/app/kibana" + + stop-at-first-match: true redirects: true max-redirects: 2 matchers-condition: or From 37d44f89adf3d4095789ccd3be5acebcd7f54a5c Mon Sep 17 00:00:00 2001 From: Prince Chaddha Date: Fri, 11 Mar 2022 01:39:41 +0530 Subject: [PATCH 5/5] Update kibana-panel.yaml --- exposed-panels/kibana-panel.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/exposed-panels/kibana-panel.yaml b/exposed-panels/kibana-panel.yaml index 13126eb967..80fdbfbdf9 100644 --- a/exposed-panels/kibana-panel.yaml +++ b/exposed-panels/kibana-panel.yaml @@ -14,7 +14,7 @@ requests: - "{{BaseURL}}" - "{{BaseURL}}/login" - "{{BaseURL}}/app/kibana" - + stop-at-first-match: true redirects: true max-redirects: 2