daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update pgsql-detect.yaml

patch-1
geeknik 2023-12-13 22:50:23 +00:00 committed by GitHub
parent 189e377848
commit 36d8c2fb03
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
network/detection/pgsql-detect.yaml
View File

@ -2,7 +2,7 @@ id: pgsql-detect
info: info:
name: PostgreSQL Authentication - Detect name: PostgreSQL Authentication - Detect
author: nybble04 author: nybble04,geeknik
severity: info severity: info
description: | description: |
PostgreSQL authentication error messages which could reveal information useful in formulating further attacks were detected. PostgreSQL authentication error messages which could reveal information useful in formulating further attacks were detected.
@ -35,6 +35,8 @@ tcp:
- type: word - type: word
part: body part: body
words: words:
- "C0A000" # Error code for unsupported frontend protocol
- "C08P01" # Error code for invalide startup packet layout
- "28000" # Error code for invalid_authorization_specification - "28000" # Error code for invalid_authorization_specification
- "28P01" # Error code for invalid_password - "28P01" # Error code for invalid_password
- "SCRAM-SHA-256" # Authentication prompt - "SCRAM-SHA-256" # Authentication prompt