Merge pull request #1002 from joanbono/master

Adding templates
2021-03-02 21:30:47 +05:30 · 2021-03-02 21:30:47 +05:30 · 4ab53d7550
parent c1d72cad18 e12ec9828a
commit 4ab53d7550
4 changed files with 93 additions and 0 deletions
--- a/exposed-panels/acunetix-panel.yaml
+++ b/exposed-panels/acunetix-panel.yaml
@ -0,0 +1,23 @@
+id: acunetix-panel-detect
+
+info:
+  name: Acunetix Panel detector
+  author: joanbono
+  severity: info
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/#/login"
+    headers:
+      User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_4) AppleWebKit/537.36 (KHTML, like Gecko)
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - '<title>Acunetix</title>'
+          - '<acx-root></acx-root>'
+        part: body
+      - type: status
+        status:
+          - 200
--- a/exposed-panels/checkmarx-panel.yaml
+++ b/exposed-panels/checkmarx-panel.yaml
@ -0,0 +1,18 @@
+id: checkmarx-panel-detect
+
+info:
+  name: Checkmarx WebClient detector
+  author: joanbono
+  severity: info
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/cxwebclient/Login.aspx"
+    headers:
+      User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_4) AppleWebKit/537.36 (KHTML, like Gecko)
+    matchers:
+      - type: word
+        words:
+          - '/CxWebClient/webApp/Scripts/libs/authenticationScripts'
+        part: body
--- a/exposed-panels/nessus-panel.yaml
+++ b/exposed-panels/nessus-panel.yaml
@ -0,0 +1,26 @@
+id: nessus-panel-detect
+
+info:
+  name: Nessus Panel detector
+  author: joanbono
+  severity: info
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/server/status"
+    headers:
+      User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_4) AppleWebKit/537.36 (KHTML, like Gecko)
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - '{"code":200,"progress":null,"status":"ready"}'
+        part: body
+      - type: word
+        words:
+          - 'NessusWWW'
+        part: header
+      - type: status
+        status:
+          - 200
--- a/technologies/burp-api-detect.yaml
+++ b/technologies/burp-api-detect.yaml
@ -0,0 +1,26 @@
+id: burp-rest-api-detect
+
+info:
+  name: Burp Rest API Server Running
+  author: joanbono
+  severity: info
+  reference: https://portswigger.net/burp/documentation/enterprise/api-reference
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/v0.1/"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - '<title>Burp API</title>'
+        part: body
+      - type: word
+        words:
+          - 'X-Burp-Version'
+        part: header
+      - type: status
+        status:
+          - 200