From 26ded33ff7ee445696c5a68d912a86ffa4ff6306 Mon Sep 17 00:00:00 2001
From: Geeknik Labs <466878+geeknik@users.noreply.github.com>
Date: Fri, 22 Jan 2021 16:16:49 +0000
Subject: [PATCH] Create selea-ip-camera.yaml

This only detects the presence of the camera control panel. It's up to the user to verify the "unauthenticated stream disclosure" exists. Please see the URL in the description for details.
---
 technologies/selea-ip-camera.yaml | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 technologies/selea-ip-camera.yaml

diff --git a/technologies/selea-ip-camera.yaml b/technologies/selea-ip-camera.yaml
new file mode 100644
index 0000000000..7d59792ecd
--- /dev/null
+++ b/technologies/selea-ip-camera.yaml
@@ -0,0 +1,25 @@
+id: selea-ip-camera
+info:
+  name: Detect Selea Targa IP OCR-ANPR Camera
+  author: geeknik
+  description: Selea Targa IP OCR-ANPR Camera Unauthenticated RTP/RTSP/M-JPEG Stream Disclosure -- https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5619.php
+  severity: info
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: header
+        words:
+          - "SeleaCPSHttpServer"
+      - type: word
+        part: body
+        words:
+          - "Selea CarPlateServer"
+      - type: status
+        status:
+          - 200