🔨 Fix exposed-docker-api from false-positives
parent
a4f05086d0
commit
44b27d7939
|
@ -2,16 +2,28 @@ id: exposed-docker-api
|
|||
|
||||
info:
|
||||
name: Exposed Docker API
|
||||
author: furkansenan
|
||||
author: furkansenan & dwisiswant0
|
||||
severity: informative
|
||||
|
||||
requests:
|
||||
- method: GET
|
||||
path:
|
||||
- '{{BaseURL}}:2376/version'
|
||||
- "http://{{Hostname}}/version"
|
||||
- "http://{{Hostname}}:2376/version"
|
||||
- "http://{{Hostname}}/v1.24/version"
|
||||
- "http://{{Hostname}}:2376/v1.24/version"
|
||||
matchers-condition: and
|
||||
matchers:
|
||||
- type: word
|
||||
words:
|
||||
- "Version"
|
||||
- "Docker"
|
||||
- "application/json"
|
||||
part: header
|
||||
- type: word
|
||||
words:
|
||||
- "KernelVersion"
|
||||
- "BuildTime"
|
||||
condition: and
|
||||
part: body
|
||||
- type: status
|
||||
status:
|
||||
- 200
|
Loading…
Reference in New Issue