From 418d7c5fdb05cdda9e6158f766df8f0a6be798b9 Mon Sep 17 00:00:00 2001
From: PikPikcU <60111811+pikpikcu@users.noreply.github.com>
Date: Sun, 30 Oct 2022 12:35:59 +0700
Subject: [PATCH] Create axigen-mail-server-detect.yaml

---
 .../detection/axigen-mail-server-detect.yaml  | 22 +++++++++++++++++++
 1 file changed, 22 insertions(+)
 create mode 100644 network/detection/axigen-mail-server-detect.yaml

diff --git a/network/detection/axigen-mail-server-detect.yaml b/network/detection/axigen-mail-server-detect.yaml
new file mode 100644
index 0000000000..8f3f570e62
--- /dev/null
+++ b/network/detection/axigen-mail-server-detect.yaml
@@ -0,0 +1,22 @@
+id: axigen-mail-server-detect
+
+info:
+  name: Axigen Mail Server Detection
+  author: pikpikcu
+  severity: info
+  metadata:
+    fofa-query: app="axigen-Mail-Server"
+  tags: network,axigen
+
+network:
+  - inputs:
+      - data: "\n"
+    host:
+      - "{{Hostname}}"
+      - "{{Host}}:25"
+
+    matchers:
+      - type: word
+        words:
+          - "Axigen ESMTP"
+          - "AXIGEN"