Merge pull request #4478 from r3naissance/master

Adding additional matchers to hp printers without auth
2022-06-20 11:17:46 +05:30 · 2022-06-20 11:17:46 +05:30 · 36524d0685
parent e3d98b4418 4330004a20
commit 36524d0685
2 changed files with 8 additions and 7 deletions
--- a/misconfiguration/hp/unauthorized-hp-printer.yaml
+++ b/misconfiguration/hp/unauthorized-hp-printer.yaml
@ -1,11 +1,11 @@
 id: unauthorized-hp-printer
-
+
 info:
  name: Unauthorized HP Printer
  author: pussycat0x
  severity: high
  tags: hp,iot,unauth
-
+
 requests:
  - method: GET
    path:
--- a/misconfiguration/hp/unauthorized-hp-officepro-printer.yaml
+++ b/misconfiguration/hp/unauthorized-hp-officepro-printer.yaml
@ -1,23 +1,24 @@
-id: unauthorized-hp-officepro-printer
-
+id: unauthorized-printer-hp
+
 info:
  name: Unauthorized HP office pro printer
-  author: pussycat0x
+  author: pussycat0x,r3naissance
  severity: high
  metadata:
    shodan-dork: http.title:"Hp Officejet pro"
  tags: hp,iot,unauth
-
+
 requests:
  - method: GET
    path:
      - "{{BaseURL}}"
+      - "{{BaseURL}}/hp/device/webAccess/index.htm?content=security"

    matchers-condition: and
    matchers:
      - type: regex
        regex:
-          - '<title>HP Officejet Pro([ 0-9A-Za-z]+)<\/title>'
+          - '<title>(HP Officejet Pro([ 0-9A-Za-z]+)|HP Designjet([ 0-9A-Za-z]+).*)<\/title>'

      - type: status
        status: