Create selea-ip-camera.yaml

This only detects the presence of the camera control panel. It's up to the user to verify the "unauthenticated stream disclosure" exists. Please see the URL in the description for details.

technologies/selea-ip-camera.yaml

@@ -0,0 +1,25 @@
+id: selea-ip-camera
+info:
+  name: Detect Selea Targa IP OCR-ANPR Camera
+  author: geeknik
+  description: Selea Targa IP OCR-ANPR Camera Unauthenticated RTP/RTSP/M-JPEG Stream Disclosure -- https://www.zeroscience.mk/en/vulnerabilities/ZSL-2021-5619.php
+  severity: info
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: header
+        words:
+          - "SeleaCPSHttpServer"
+      - type: word
+        part: body
+        words:
+          - "Selea CarPlateServer"
+      - type: status
+        status:
+          - 200