Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates into pr/3298
sandeep
commit
5bdd98f32d
18
README.md
18
README.md
|
|
@ -42,18 +42,18 @@ An overview of the nuclei template project, including statistics on unique tags,
|
|||
|
||||
| TAG | COUNT | AUTHOR | COUNT | DIRECTORY | COUNT | SEVERITY | COUNT | TYPE | COUNT |
|
||||
|-----------|-------|---------------|-------|------------------|-------|----------|-------|---------|-------|
|
||||
| cve | 921 | daffainfo | 354 | cves | 927 | info | 918 | http | 2512 |
|
||||
| lfi | 382 | dhiyaneshdk | 342 | vulnerabilities | 352 | high | 695 | file | 57 |
|
||||
| panel | 321 | pikpikcu | 287 | exposed-panels | 321 | medium | 528 | network | 47 |
|
||||
| cve | 922 | daffainfo | 354 | cves | 928 | info | 921 | http | 2517 |
|
||||
| lfi | 383 | dhiyaneshdk | 342 | vulnerabilities | 353 | high | 696 | file | 57 |
|
||||
| panel | 324 | pikpikcu | 287 | exposed-panels | 324 | medium | 528 | network | 47 |
|
||||
| xss | 290 | pdteam | 216 | technologies | 226 | critical | 326 | dns | 12 |
|
||||
| wordpress | 270 | geeknik | 172 | exposures | 196 | low | 166 | | |
|
||||
| wordpress | 271 | geeknik | 172 | exposures | 196 | low | 167 | | |
|
||||
| exposure | 250 | dwisiswant0 | 158 | misconfiguration | 164 | | | | |
|
||||
| rce | 231 | gy741 | 91 | token-spray | 133 | | | | |
|
||||
| tech | 230 | pussycat0x | 91 | takeovers | 65 | | | | |
|
||||
| cve2021 | 192 | 0x_akoko | 77 | default-logins | 63 | | | | |
|
||||
| wp-plugin | 186 | princechaddha | 72 | file | 57 | | | | |
|
||||
| tech | 233 | pussycat0x | 94 | token-spray | 133 | | | | |
|
||||
| rce | 231 | gy741 | 91 | takeovers | 65 | | | | |
|
||||
| cve2021 | 192 | 0x_akoko | 79 | default-logins | 63 | | | | |
|
||||
| wp-plugin | 187 | princechaddha | 72 | file | 57 | | | | |
|
||||
|
||||
**192 directories, 2700 files**.
|
||||
**192 directories, 2705 files**.
|
||||
|
||||
</td>
|
||||
</tr>
|
||||
|
|
|
|||
File diff suppressed because one or more lines are too long
2133
TEMPLATES-STATS.md
2133
TEMPLATES-STATS.md
File diff suppressed because it is too large
Load Diff
22
TOP-10.md
22
TOP-10.md
|
|
@ -1,12 +1,12 @@
|
|||
| TAG | COUNT | AUTHOR | COUNT | DIRECTORY | COUNT | SEVERITY | COUNT | TYPE | COUNT |
|
||||
|-----------|-------|---------------|-------|------------------|-------|----------|-------|---------|-------
|
||||
| cve | 921 | daffainfo | 348 | cves | 927 | info | 912 | http | 2504 |
|
||||
| lfi | 382 | dhiyaneshdk | 341 | vulnerabilities | 350 | high | 695 | file | 57 |
|
||||
| panel | 319 | pikpikcu | 286 | exposed-panels | 319 | medium | 527 | network | 47 |
|
||||
| xss | 289 | pdteam | 216 | technologies | 225 | critical | 324 | dns | 12 |
|
||||
| wordpress | 271 | geeknik | 172 | exposures | 196 | low | 166 | | |
|
||||
| exposure | 250 | dwisiswant0 | 157 | misconfiguration | 164 | | | | |
|
||||
| rce | 230 | gy741 | 90 | token-spray | 130 | | | | |
|
||||
| tech | 228 | pussycat0x | 90 | takeovers | 65 | | | | |
|
||||
| cve2021 | 192 | 0x_akoko | 77 | default-logins | 63 | | | | |
|
||||
| wp-plugin | 186 | princechaddha | 72 | file | 57 | | | | |
|
||||
|-----------|-------|---------------|-------|------------------|-------|----------|-------|---------|-------|
|
||||
| cve | 922 | daffainfo | 354 | cves | 928 | info | 921 | http | 2517 |
|
||||
| lfi | 383 | dhiyaneshdk | 342 | vulnerabilities | 353 | high | 696 | file | 57 |
|
||||
| panel | 324 | pikpikcu | 287 | exposed-panels | 324 | medium | 528 | network | 47 |
|
||||
| xss | 290 | pdteam | 216 | technologies | 226 | critical | 326 | dns | 12 |
|
||||
| wordpress | 271 | geeknik | 172 | exposures | 196 | low | 167 | | |
|
||||
| exposure | 250 | dwisiswant0 | 158 | misconfiguration | 164 | | | | |
|
||||
| tech | 233 | pussycat0x | 94 | token-spray | 133 | | | | |
|
||||
| rce | 231 | gy741 | 91 | takeovers | 65 | | | | |
|
||||
| cve2021 | 192 | 0x_akoko | 79 | default-logins | 63 | | | | |
|
||||
| wp-plugin | 187 | princechaddha | 72 | file | 57 | | | | |
|
||||
|
|
|
|||
|
|
@ -31,11 +31,11 @@ requests:
|
|||
- type: regex
|
||||
part: interactsh_request
|
||||
regex:
|
||||
- '([a-z0-9\.\-]+)\.([a-z0-9]+)\.interactsh\.com'
|
||||
- '([a-z0-9\.\-]+)\.([a-z0-9]+)\.interact(\.sh|sh\.com)'
|
||||
|
||||
extractors:
|
||||
- type: regex
|
||||
part: interactsh_request
|
||||
group: 1
|
||||
regex:
|
||||
- '([a-z0-9\.\-]+)\.([a-z0-9]+)\.interactsh\.com' # Extract ${hostName}
|
||||
- '([a-z0-9\.\-]+)\.([a-z0-9]+)\.interact(\.sh|sh\.com)' # Extract ${hostName}
|
||||
|
|
|
|||
|
|
@ -0,0 +1,28 @@
|
|||
id: thruk-login
|
||||
|
||||
info:
|
||||
name: thruk detect
|
||||
author: ffffffff0x
|
||||
severity: info
|
||||
metadata:
|
||||
fofa-query: title=="Thruk Monitoring Webinterface"
|
||||
tags: thruk,panel
|
||||
|
||||
requests:
|
||||
- method: GET
|
||||
path:
|
||||
- "{{BaseURL}}/thruk/cgi-bin/login.cgi?thruk/"
|
||||
|
||||
redirects: true
|
||||
max-redirects: 2
|
||||
matchers-condition: and
|
||||
matchers:
|
||||
- type: word
|
||||
part: body
|
||||
words:
|
||||
- '<title>Thruk Monitoring Webinterface</title>'
|
||||
|
||||
- type: word
|
||||
part: header
|
||||
words:
|
||||
- "thruk_test="
|
||||
|
|
@ -0,0 +1,25 @@
|
|||
id: formalms-install
|
||||
|
||||
info:
|
||||
name: Formalms Exposed Installation
|
||||
author: princechaddha
|
||||
severity: high
|
||||
tags: misconfig,formalms
|
||||
|
||||
requests:
|
||||
- method: GET
|
||||
path:
|
||||
- '{{BaseURL}}/install/'
|
||||
|
||||
matchers-condition: and
|
||||
matchers:
|
||||
- type: word
|
||||
part: body
|
||||
words:
|
||||
- '<title>forma.lms installer</title>'
|
||||
- '<h1>forma.lms - Installation</h1>'
|
||||
condition: and
|
||||
|
||||
- type: status
|
||||
status:
|
||||
- 200
|
||||
|
|
@ -28,22 +28,25 @@ requests:
|
|||
- '{{BaseURL}}/%0d/example.com/'
|
||||
- '{{BaseURL}}////example.com/%2f%2e%2e'
|
||||
- '{{BaseURL}}/%5cexample.com/%2f%2e%2e'
|
||||
- '{{BaseURL}}/%5C%5Cexample.com/%252e%252e%252f'
|
||||
- '{{BaseURL}}/{{BaseURL}}example.com'
|
||||
- '{{BaseURL}}//{{BaseURL}}example.com/'
|
||||
- '{{BaseURL}}////{{BaseURL}}example.com/%2f%2e%2e'
|
||||
- '{{BaseURL}}/%5c{{BaseURL}}example.com/%2f%2e%2e'
|
||||
- '{{BaseURL}}/?page=example.com&_url=example.com&callback=example.com&checkout_url=example.com&content=example.com&continue=example.com&continueTo=example.com&counturl=example.com&data=example.com&dest=example.com&dest_url=example.com&diexample.com&document=example.com&domain=example.com&done=example.com&download=example.com&feed=example.com&file=example.com&host=example.com&html=example.com&http=example.com&https=example.com&image=example.com&image_src=example.com&image_url=example.com&imageurl=example.com&include=example.com&langTo=example.com&media=example.com&navigation=example.com&next=example.com&open=example.com&out=example.com&page=example.com&page_url=example.com&pageurl=example.com&path=example.com&picture=example.com&port=example.com&proxy=example.com&redir=example.com&redirect=example.com&redirectUri=example.com&redirectUrl=example.com&reference=example.com&referrer=example.com&req=example.com&request=example.com&retUrl=example.com&return=example.com&returnTo=example.com&return_path=example.com&return_to=example.com&rurl=example.com&show=example.com&site=example.com&source=example.com&src=example.com&target=example.com&to=example.com&uri=example.com&url=example.com&val=example.com&validate=example.com&view=example.com&window=example.com&redirect_to=example.com&ret=example.com&r2=example.com&img=example.com&u=example.com&r=example.com&URL=example.com&AuthState=example.com'
|
||||
- '{{BaseURL}}/?page=example.com&_url=example.com&callback=example.com&checkout_url=example.com&content=example.com&continue=example.com&continueTo=example.com&counturl=example.com&data=example.com&dest=example.com&dest_url=example.com&dir=example.com&document=example.com&domain=example.com&done=example.com&download=example.com&feed=example.com&file=example.com&host=example.com&html=example.com&http=example.com&https=example.com&image=example.com&image_src=example.com&image_url=example.com&imageurl=example.com&include=example.com&langTo=example.com&media=example.com&navigation=example.com&next=example.com&open=example.com&out=example.com&page=example.com&page_url=example.com&pageurl=example.com&path=example.com&picture=example.com&port=example.com&proxy=example.com&redir=example.com&redirect=example.com&redirectUri=example.com&redirectUrl=example.com&reference=example.com&referrer=example.com&req=example.com&request=example.com&retUrl=example.com&return=example.com&returnTo=example.com&return_path=example.com&return_to=example.com&rurl=example.com&show=example.com&site=example.com&source=example.com&src=example.com&target=example.com&to=example.com&uri=example.com&url=example.com&val=example.com&validate=example.com&view=example.com&window=example.com&redirect_to=example.com&ret=example.com&r2=example.com&img=example.com&u=example.com&r=example.com&URL=example.com&AuthState=example.com'
|
||||
- '{{BaseURL}}/1/_https@example.com'
|
||||
|
||||
stop-at-first-match: true
|
||||
matchers-condition: and
|
||||
matchers:
|
||||
- type: regex
|
||||
regex:
|
||||
- '(?m)^(?:Location\s*?:\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\-_\.@]*)example\.com.*$'
|
||||
part: header
|
||||
regex:
|
||||
- '(?m)^(?:Location\s*?:\s*?)(?:https?:\/\/|\/\/|\/\\\\|\/\\)?(?:[a-zA-Z0-9\-_\.@]*)example\.com\/?(\/|[^.].*)?$'
|
||||
|
||||
- type: status
|
||||
status:
|
||||
- 302
|
||||
- 301
|
||||
- 302
|
||||
- 307
|
||||
- 308
|
||||
Loading…
Reference in New Issue