From 5c4a72935f71e0f546b151179af7178f97556d59 Mon Sep 17 00:00:00 2001 From: GitHub Action Date: Mon, 29 Jan 2024 11:58:34 +0000 Subject: [PATCH] TemplateMan Update [Mon Jan 29 11:58:34 UTC 2024] :robot: --- cloud/enum/azure-vm-cloud-enum.yaml | 1 + cloud/enum/azure-website-enum.yaml | 1 + cloud/enum/gcp-app-engine-enum.yaml | 1 + cloud/enum/gcp-bucket-enum.yaml | 1 + cloud/enum/gcp-firebase-app-enum.yaml | 1 + cloud/enum/gcp-firebase-rtdb-enum.yaml | 1 + .../linux/binary/privesc-aa-exec.yaml | 1 + .../linux/binary/privesc-ash.yaml | 1 + .../linux/binary/privesc-awk.yaml | 1 + .../linux/binary/privesc-bash.yaml | 3 ++- .../linux/binary/privesc-cdist.yaml | 1 + .../linux/binary/privesc-choom.yaml | 1 + .../linux/binary/privesc-cpulimit.yaml | 1 + .../linux/binary/privesc-csh.yaml | 1 + .../linux/binary/privesc-csvtool.yaml | 1 + .../linux/binary/privesc-dash.yaml | 1 + .../privilege-escalation/linux/binary/privesc-dc.yaml | 1 + .../linux/binary/privesc-distcc.yaml | 1 + .../linux/binary/privesc-elvish.yaml | 1 + .../linux/binary/privesc-enscript.yaml | 1 + .../linux/binary/privesc-env.yaml | 1 + .../linux/binary/privesc-expect.yaml | 1 + .../linux/binary/privesc-find.yaml | 1 + .../linux/binary/privesc-fish.yaml | 1 + .../linux/binary/privesc-flock.yaml | 1 + .../linux/binary/privesc-gawk.yaml | 1 + .../linux/binary/privesc-grc.yaml | 1 + .../linux/binary/privesc-ionice.yaml | 1 + .../linux/binary/privesc-julia.yaml | 1 + .../linux/binary/privesc-lftp.yaml | 1 + .../linux/binary/privesc-ltrace.yaml | 1 + .../linux/binary/privesc-lua.yaml | 1 + .../linux/binary/privesc-mawk.yaml | 1 + .../linux/binary/privesc-multitime.yaml | 1 + .../linux/binary/privesc-mysql.yaml | 1 + .../linux/binary/privesc-nawk.yaml | 1 + .../linux/binary/privesc-nice.yaml | 1 + .../linux/binary/privesc-node.yaml | 1 + .../linux/binary/privesc-nsenter.yaml | 1 + .../linux/binary/privesc-perl.yaml | 1 + .../linux/binary/privesc-pexec.yaml | 1 + .../linux/binary/privesc-php.yaml | 1 + .../linux/binary/privesc-posh.yaml | 1 + .../linux/binary/privesc-python.yaml | 1 + .../linux/binary/privesc-rake.yaml | 1 + .../privilege-escalation/linux/binary/privesc-rc.yaml | 1 + .../linux/binary/privesc-rlwrap.yaml | 1 + .../linux/binary/privesc-rpm.yaml | 1 + .../linux/binary/privesc-rpmdb.yaml | 1 + .../linux/binary/privesc-rpmverify.yaml | 1 + .../linux/binary/privesc-ruby.yaml | 1 + .../linux/binary/privesc-run-parts.yaml | 1 + .../linux/binary/privesc-sash.yaml | 1 + .../linux/binary/privesc-slsh.yaml | 1 + .../linux/binary/privesc-socat.yaml | 1 + .../linux/binary/privesc-softlimit.yaml | 1 + .../linux/binary/privesc-sqlite3.yaml | 1 + .../linux/binary/privesc-ssh-agent.yaml | 1 + .../linux/binary/privesc-sshpass.yaml | 1 + .../linux/binary/privesc-stdbuf.yaml | 1 + .../linux/binary/privesc-strace.yaml | 1 + .../linux/binary/privesc-tar.yaml | 1 + .../linux/binary/privesc-tcsh.yaml | 1 + .../linux/binary/privesc-time.yaml | 1 + .../linux/binary/privesc-timeout.yaml | 1 + .../linux/binary/privesc-tmate.yaml | 1 + .../linux/binary/privesc-torify.yaml | 1 + .../linux/binary/privesc-torsocks.yaml | 1 + .../linux/binary/privesc-unshare.yaml | 1 + .../privilege-escalation/linux/binary/privesc-vi.yaml | 1 + .../linux/binary/privesc-view.yaml | 1 + .../linux/binary/privesc-vim.yaml | 1 + .../linux/binary/privesc-xargs.yaml | 1 + .../linux/binary/privesc-xdg-user-dir.yaml | 1 + .../linux/binary/privesc-yash.yaml | 1 + .../linux/binary/privesc-zsh.yaml | 1 + code/privilege-escalation/linux/rw-shadow.yaml | 1 + code/privilege-escalation/linux/rw-sudoers.yaml | 1 + dns/dns-rebinding.yaml | 1 + http/cves/2018/CVE-2018-10942.yaml | 2 +- http/cves/2020/CVE-2020-27838.yaml | 11 ++++++----- http/cves/2022/CVE-2022-47501.yaml | 9 +++++---- http/cves/2023/CVE-2023-46805.yaml | 5 +++-- http/cves/2023/CVE-2023-47211.yaml | 8 ++++---- http/cves/2023/CVE-2023-50290.yaml | 9 +++++---- http/cves/2023/CVE-2023-6875.yaml | 2 +- http/cves/2024/CVE-2024-21887.yaml | 5 +++-- .../node-red/nodered-default-login.yaml | 4 ++-- .../powershell/powershell-default-login.yaml | 4 ++-- http/exposed-panels/autoset-detect.yaml | 2 +- http/exposed-panels/compalex-panel-detect.yaml | 3 ++- http/exposed-panels/doris-panel.yaml | 2 +- http/exposed-panels/goodjob-dashboard.yaml | 2 +- http/exposed-panels/lomnido-panel.yaml | 2 +- http/exposed-panels/securenvoy-panel.yaml | 5 ++--- http/exposed-panels/vault-panel.yaml | 2 +- http/exposures/backups/php-backup-files.yaml | 2 +- http/exposures/backups/settings-php-files.yaml | 2 +- http/exposures/backups/sql-dump.yaml | 2 +- http/exposures/backups/zip-backup-files.yaml | 2 +- .../configs/dockerfile-hidden-disclosure.yaml | 2 +- http/exposures/configs/phpinfo-files.yaml | 2 +- http/exposures/configs/vbulletin-path-disclosure.yaml | 5 ++--- http/exposures/files/reactapp-env-js.yaml | 2 +- http/exposures/files/shellscripts.yaml | 2 +- http/exposures/logs/go-pprof-debug.yaml | 2 ++ http/miscellaneous/defacement-detect.yaml | 1 + http/misconfiguration/doris-dashboard.yaml | 2 +- http/technologies/tibco-businessconnect-detect.yaml | 4 ++-- http/vulnerabilities/apache/apache-nifi-rce.yaml | 5 +++-- .../prestashop-blocktestimonial-file-upload.yaml | 3 ++- .../vulnerabilities/vbulletin/vbulletin-backdoor.yaml | 2 ++ http/vulnerabilities/wordpress/wp-tinymce-lfi.yaml | 2 +- javascript/cves/2024/CVE-2024-23897.yaml | 5 +++-- network/default-login/ftp-weak-credentials.yaml | 2 +- 115 files changed, 149 insertions(+), 58 deletions(-) diff --git a/cloud/enum/azure-vm-cloud-enum.yaml b/cloud/enum/azure-vm-cloud-enum.yaml index 480ad4f38b..39166a154f 100644 --- a/cloud/enum/azure-vm-cloud-enum.yaml +++ b/cloud/enum/azure-vm-cloud-enum.yaml @@ -8,6 +8,7 @@ info: Searches for Azure virtual machines via their registered DNS names. metadata: verified: true + max-request: 1 tags: cloud,cloud-enum,azure,fuzz,enum self-contained: true diff --git a/cloud/enum/azure-website-enum.yaml b/cloud/enum/azure-website-enum.yaml index 8dd9563031..6475615d0b 100644 --- a/cloud/enum/azure-website-enum.yaml +++ b/cloud/enum/azure-website-enum.yaml @@ -8,6 +8,7 @@ info: Searches for Azure websites that are registered and responding. metadata: verified: true + max-request: 1 tags: cloud,enum,azure self-contained: true diff --git a/cloud/enum/gcp-app-engine-enum.yaml b/cloud/enum/gcp-app-engine-enum.yaml index 5c2ee6cd43..457dc1b3b0 100644 --- a/cloud/enum/gcp-app-engine-enum.yaml +++ b/cloud/enum/gcp-app-engine-enum.yaml @@ -8,6 +8,7 @@ info: Searches for App Engine Apps in GCP. metadata: verified: true + max-request: 1 tags: enum,cloud,cloud-enum,gcp self-contained: true diff --git a/cloud/enum/gcp-bucket-enum.yaml b/cloud/enum/gcp-bucket-enum.yaml index 4e5b4a3530..ae3bdfc4a9 100644 --- a/cloud/enum/gcp-bucket-enum.yaml +++ b/cloud/enum/gcp-bucket-enum.yaml @@ -8,6 +8,7 @@ info: Searches for open and protected buckets in GCP. metadata: verified: true + max-request: 1 tags: cloud,enum,cloud-enum,gcp self-contained: true diff --git a/cloud/enum/gcp-firebase-app-enum.yaml b/cloud/enum/gcp-firebase-app-enum.yaml index b2fad26e1c..3af415dc74 100644 --- a/cloud/enum/gcp-firebase-app-enum.yaml +++ b/cloud/enum/gcp-firebase-app-enum.yaml @@ -8,6 +8,7 @@ info: Searches for Firebase Apps in GCP. metadata: verified: true + max-request: 1 tags: enum,cloud,cloud-enum,gcp self-contained: true diff --git a/cloud/enum/gcp-firebase-rtdb-enum.yaml b/cloud/enum/gcp-firebase-rtdb-enum.yaml index 8e5a4669fd..baf3604606 100644 --- a/cloud/enum/gcp-firebase-rtdb-enum.yaml +++ b/cloud/enum/gcp-firebase-rtdb-enum.yaml @@ -8,6 +8,7 @@ info: Searches for Firebase Realtime Databases in GCP. metadata: verified: true + max-request: 1 tags: enum,cloud,cloud-enum,gcp self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-aa-exec.yaml b/code/privilege-escalation/linux/binary/privesc-aa-exec.yaml index 8615970b4b..7c77fba87f 100644 --- a/code/privilege-escalation/linux/binary/privesc-aa-exec.yaml +++ b/code/privilege-escalation/linux/binary/privesc-aa-exec.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/aa-exec/ metadata: verified: true + max-request: 3 tags: code,linux,aa-exec,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-ash.yaml b/code/privilege-escalation/linux/binary/privesc-ash.yaml index 1ddce4264f..5326491b71 100644 --- a/code/privilege-escalation/linux/binary/privesc-ash.yaml +++ b/code/privilege-escalation/linux/binary/privesc-ash.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/ash/ metadata: verified: true + max-request: 3 tags: code,linux,ash,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-awk.yaml b/code/privilege-escalation/linux/binary/privesc-awk.yaml index 11f58df9d1..f2d53f6cd1 100644 --- a/code/privilege-escalation/linux/binary/privesc-awk.yaml +++ b/code/privilege-escalation/linux/binary/privesc-awk.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/awk/ metadata: verified: true + max-request: 3 tags: code,linux,awk,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-bash.yaml b/code/privilege-escalation/linux/binary/privesc-bash.yaml index 542aa5d048..1fb5fcfbef 100644 --- a/code/privilege-escalation/linux/binary/privesc-bash.yaml +++ b/code/privilege-escalation/linux/binary/privesc-bash.yaml @@ -5,11 +5,12 @@ info: author: daffainfo severity: high description: | - Bash is a Unix shell and command language written by Brian Fox for the GNU Project as a free software replacement for the Bourne shell. The shell's name is an acronym for Bourne Again Shell, a pun on the name of the Bourne shell that it replaces and the notion of being born again. + Bash is a Unix shell and command language written by Brian Fox for the GNU Project as a free software replacement for the Bourne shell. The shell's name is an acronym for Bourne Again Shell, a pun on the name of the Bourne shell that it replaces and the notion of being born again. reference: - https://gtfobins.github.io/gtfobins/bash/ metadata: verified: true + max-request: 3 tags: code,linux,bash,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-cdist.yaml b/code/privilege-escalation/linux/binary/privesc-cdist.yaml index 403a6263fe..f734bc1437 100644 --- a/code/privilege-escalation/linux/binary/privesc-cdist.yaml +++ b/code/privilege-escalation/linux/binary/privesc-cdist.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/cdist/ metadata: verified: true + max-request: 3 tags: code,linux,cdist,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-choom.yaml b/code/privilege-escalation/linux/binary/privesc-choom.yaml index 4a68a9a657..a2d6766f61 100644 --- a/code/privilege-escalation/linux/binary/privesc-choom.yaml +++ b/code/privilege-escalation/linux/binary/privesc-choom.yaml @@ -9,6 +9,7 @@ info: reference: - https://gtfobins.github.io/gtfobins/choom/ metadata: + max-request: 3 verified: true tags: code,linux,choom,privesc diff --git a/code/privilege-escalation/linux/binary/privesc-cpulimit.yaml b/code/privilege-escalation/linux/binary/privesc-cpulimit.yaml index 9a8cd8724a..911f3b3ffd 100644 --- a/code/privilege-escalation/linux/binary/privesc-cpulimit.yaml +++ b/code/privilege-escalation/linux/binary/privesc-cpulimit.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/cpulimit/ metadata: verified: true + max-request: 3 tags: code,linux,cpulimit,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-csh.yaml b/code/privilege-escalation/linux/binary/privesc-csh.yaml index e491fa7951..9f959a709c 100644 --- a/code/privilege-escalation/linux/binary/privesc-csh.yaml +++ b/code/privilege-escalation/linux/binary/privesc-csh.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/csh/ metadata: verified: true + max-request: 3 tags: code,linux,csh,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-csvtool.yaml b/code/privilege-escalation/linux/binary/privesc-csvtool.yaml index 47bc1dbb53..5651eccb08 100644 --- a/code/privilege-escalation/linux/binary/privesc-csvtool.yaml +++ b/code/privilege-escalation/linux/binary/privesc-csvtool.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/csvtool/ metadata: verified: true + max-request: 3 tags: code,linux,csvtool,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-dash.yaml b/code/privilege-escalation/linux/binary/privesc-dash.yaml index 5e6e9e56cb..10316888c4 100644 --- a/code/privilege-escalation/linux/binary/privesc-dash.yaml +++ b/code/privilege-escalation/linux/binary/privesc-dash.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/dash/ metadata: verified: true + max-request: 3 tags: code,linux,dash,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-dc.yaml b/code/privilege-escalation/linux/binary/privesc-dc.yaml index 5bb6af4de0..dc933320bb 100644 --- a/code/privilege-escalation/linux/binary/privesc-dc.yaml +++ b/code/privilege-escalation/linux/binary/privesc-dc.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/dc/ metadata: verified: true + max-request: 3 tags: code,linux,dc,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-distcc.yaml b/code/privilege-escalation/linux/binary/privesc-distcc.yaml index b366fe85e0..5976f585fe 100644 --- a/code/privilege-escalation/linux/binary/privesc-distcc.yaml +++ b/code/privilege-escalation/linux/binary/privesc-distcc.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/distcc/ metadata: verified: true + max-request: 3 tags: code,linux,distcc,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-elvish.yaml b/code/privilege-escalation/linux/binary/privesc-elvish.yaml index 96e7fb3968..bf22517964 100644 --- a/code/privilege-escalation/linux/binary/privesc-elvish.yaml +++ b/code/privilege-escalation/linux/binary/privesc-elvish.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/elvish/ metadata: verified: true + max-request: 3 tags: code,linux,elvish,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-enscript.yaml b/code/privilege-escalation/linux/binary/privesc-enscript.yaml index ee812847b1..b932fd95b2 100644 --- a/code/privilege-escalation/linux/binary/privesc-enscript.yaml +++ b/code/privilege-escalation/linux/binary/privesc-enscript.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/enscript/ metadata: verified: true + max-request: 3 tags: code,linux,enscript,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-env.yaml b/code/privilege-escalation/linux/binary/privesc-env.yaml index 707a6be17b..e36bb950d7 100644 --- a/code/privilege-escalation/linux/binary/privesc-env.yaml +++ b/code/privilege-escalation/linux/binary/privesc-env.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/env/ metadata: verified: true + max-request: 3 tags: code,linux,env,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-expect.yaml b/code/privilege-escalation/linux/binary/privesc-expect.yaml index 9a7024e5c4..6a8d2ec69d 100644 --- a/code/privilege-escalation/linux/binary/privesc-expect.yaml +++ b/code/privilege-escalation/linux/binary/privesc-expect.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/expect/ metadata: verified: true + max-request: 3 tags: code,linux,expect,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-find.yaml b/code/privilege-escalation/linux/binary/privesc-find.yaml index 82e5ede5f2..c28e2e8515 100644 --- a/code/privilege-escalation/linux/binary/privesc-find.yaml +++ b/code/privilege-escalation/linux/binary/privesc-find.yaml @@ -9,6 +9,7 @@ info: reference: - https://gtfobins.github.io/gtfobins/find/ metadata: + max-request: 3 verified: true tags: code,linux,find,privesc diff --git a/code/privilege-escalation/linux/binary/privesc-fish.yaml b/code/privilege-escalation/linux/binary/privesc-fish.yaml index 56dc9f7953..f1ddb49546 100644 --- a/code/privilege-escalation/linux/binary/privesc-fish.yaml +++ b/code/privilege-escalation/linux/binary/privesc-fish.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/fish/ metadata: verified: true + max-request: 3 tags: code,linux,fish,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-flock.yaml b/code/privilege-escalation/linux/binary/privesc-flock.yaml index 2be94686fa..1bdacfd010 100644 --- a/code/privilege-escalation/linux/binary/privesc-flock.yaml +++ b/code/privilege-escalation/linux/binary/privesc-flock.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/flock/ metadata: verified: true + max-request: 3 tags: code,linux,flock,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-gawk.yaml b/code/privilege-escalation/linux/binary/privesc-gawk.yaml index ddb2d44fbb..6639822193 100644 --- a/code/privilege-escalation/linux/binary/privesc-gawk.yaml +++ b/code/privilege-escalation/linux/binary/privesc-gawk.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/gawk/ metadata: verified: true + max-request: 3 tags: code,linux,gawk,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-grc.yaml b/code/privilege-escalation/linux/binary/privesc-grc.yaml index 6491d8f960..d5415b8d88 100644 --- a/code/privilege-escalation/linux/binary/privesc-grc.yaml +++ b/code/privilege-escalation/linux/binary/privesc-grc.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/grc/ metadata: verified: true + max-request: 3 tags: code,linux,grc,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-ionice.yaml b/code/privilege-escalation/linux/binary/privesc-ionice.yaml index 6f511f235e..b8eefaaa2a 100644 --- a/code/privilege-escalation/linux/binary/privesc-ionice.yaml +++ b/code/privilege-escalation/linux/binary/privesc-ionice.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/ionice/ metadata: verified: true + max-request: 3 tags: code,linux,ionice,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-julia.yaml b/code/privilege-escalation/linux/binary/privesc-julia.yaml index c660104033..aeba7767a1 100644 --- a/code/privilege-escalation/linux/binary/privesc-julia.yaml +++ b/code/privilege-escalation/linux/binary/privesc-julia.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/julia/ metadata: verified: true + max-request: 3 tags: code,linux,julia,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-lftp.yaml b/code/privilege-escalation/linux/binary/privesc-lftp.yaml index dc64f961d3..6020339330 100644 --- a/code/privilege-escalation/linux/binary/privesc-lftp.yaml +++ b/code/privilege-escalation/linux/binary/privesc-lftp.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/lftp/ metadata: verified: true + max-request: 3 tags: code,linux,lftp,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-ltrace.yaml b/code/privilege-escalation/linux/binary/privesc-ltrace.yaml index 54c0307ce9..46083b9fe9 100644 --- a/code/privilege-escalation/linux/binary/privesc-ltrace.yaml +++ b/code/privilege-escalation/linux/binary/privesc-ltrace.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/ltrace/ metadata: verified: true + max-request: 3 tags: code,linux,ltrace,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-lua.yaml b/code/privilege-escalation/linux/binary/privesc-lua.yaml index 4ae84132a7..b8c646098d 100644 --- a/code/privilege-escalation/linux/binary/privesc-lua.yaml +++ b/code/privilege-escalation/linux/binary/privesc-lua.yaml @@ -9,6 +9,7 @@ info: reference: - https://gtfobins.github.io/gtfobins/lua/ metadata: + max-request: 3 verified: true tags: code,linux,lua,privesc diff --git a/code/privilege-escalation/linux/binary/privesc-mawk.yaml b/code/privilege-escalation/linux/binary/privesc-mawk.yaml index 76d0f37693..d24f05ed6e 100644 --- a/code/privilege-escalation/linux/binary/privesc-mawk.yaml +++ b/code/privilege-escalation/linux/binary/privesc-mawk.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/mawk/ metadata: verified: true + max-request: 3 tags: code,linux,mawk,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-multitime.yaml b/code/privilege-escalation/linux/binary/privesc-multitime.yaml index b8be6f65d9..0137414196 100644 --- a/code/privilege-escalation/linux/binary/privesc-multitime.yaml +++ b/code/privilege-escalation/linux/binary/privesc-multitime.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/multitime/ metadata: verified: true + max-request: 3 tags: code,linux,multitime,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-mysql.yaml b/code/privilege-escalation/linux/binary/privesc-mysql.yaml index 73931e91e5..4c970b3f44 100644 --- a/code/privilege-escalation/linux/binary/privesc-mysql.yaml +++ b/code/privilege-escalation/linux/binary/privesc-mysql.yaml @@ -9,6 +9,7 @@ info: reference: - https://gtfobins.github.io/gtfobins/mysql/ metadata: + max-request: 3 verified: true tags: code,linux,mysql,privesc diff --git a/code/privilege-escalation/linux/binary/privesc-nawk.yaml b/code/privilege-escalation/linux/binary/privesc-nawk.yaml index a9cf9b3842..e5901142d3 100644 --- a/code/privilege-escalation/linux/binary/privesc-nawk.yaml +++ b/code/privilege-escalation/linux/binary/privesc-nawk.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/nawk/ metadata: verified: true + max-request: 3 tags: code,linux,nawk,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-nice.yaml b/code/privilege-escalation/linux/binary/privesc-nice.yaml index d58763a39d..1604613074 100644 --- a/code/privilege-escalation/linux/binary/privesc-nice.yaml +++ b/code/privilege-escalation/linux/binary/privesc-nice.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/nice/ metadata: verified: true + max-request: 3 tags: code,linux,nice,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-node.yaml b/code/privilege-escalation/linux/binary/privesc-node.yaml index 46145ddcaf..bc90183d5b 100644 --- a/code/privilege-escalation/linux/binary/privesc-node.yaml +++ b/code/privilege-escalation/linux/binary/privesc-node.yaml @@ -9,6 +9,7 @@ info: reference: - https://gtfobins.github.io/gtfobins/node/ metadata: + max-request: 4 verified: true tags: code,linux,node,privesc diff --git a/code/privilege-escalation/linux/binary/privesc-nsenter.yaml b/code/privilege-escalation/linux/binary/privesc-nsenter.yaml index b19e60d156..7a9e61f2c8 100644 --- a/code/privilege-escalation/linux/binary/privesc-nsenter.yaml +++ b/code/privilege-escalation/linux/binary/privesc-nsenter.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/nsenter/ metadata: verified: true + max-request: 3 tags: code,linux,nsenter,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-perl.yaml b/code/privilege-escalation/linux/binary/privesc-perl.yaml index 5f8a756809..7801418c6b 100644 --- a/code/privilege-escalation/linux/binary/privesc-perl.yaml +++ b/code/privilege-escalation/linux/binary/privesc-perl.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/perl/ metadata: verified: true + max-request: 4 tags: code,linux,perl,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-pexec.yaml b/code/privilege-escalation/linux/binary/privesc-pexec.yaml index eb3e1d217b..7047ae790a 100644 --- a/code/privilege-escalation/linux/binary/privesc-pexec.yaml +++ b/code/privilege-escalation/linux/binary/privesc-pexec.yaml @@ -10,6 +10,7 @@ info: https://gtfobins.github.io/gtfobins/pexec/ metadata: verified: true + max-request: 3 tags: code,linux,pexec,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-php.yaml b/code/privilege-escalation/linux/binary/privesc-php.yaml index 59a2de5fe7..1040a39e8f 100644 --- a/code/privilege-escalation/linux/binary/privesc-php.yaml +++ b/code/privilege-escalation/linux/binary/privesc-php.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/php/ metadata: verified: true + max-request: 4 tags: code,linux,php,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-posh.yaml b/code/privilege-escalation/linux/binary/privesc-posh.yaml index 5a272f901a..8809da7f54 100644 --- a/code/privilege-escalation/linux/binary/privesc-posh.yaml +++ b/code/privilege-escalation/linux/binary/privesc-posh.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/posh/ metadata: verified: true + max-request: 3 tags: code,linux,posh,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-python.yaml b/code/privilege-escalation/linux/binary/privesc-python.yaml index 2d9691f253..fc06b133c4 100644 --- a/code/privilege-escalation/linux/binary/privesc-python.yaml +++ b/code/privilege-escalation/linux/binary/privesc-python.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/python/ metadata: verified: true + max-request: 4 tags: code,linux,php,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-rake.yaml b/code/privilege-escalation/linux/binary/privesc-rake.yaml index f8e4c01ef9..cab6779366 100644 --- a/code/privilege-escalation/linux/binary/privesc-rake.yaml +++ b/code/privilege-escalation/linux/binary/privesc-rake.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/rake/ metadata: verified: true + max-request: 3 tags: code,linux,rake,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-rc.yaml b/code/privilege-escalation/linux/binary/privesc-rc.yaml index 5f04f3a1c1..a63d09912c 100644 --- a/code/privilege-escalation/linux/binary/privesc-rc.yaml +++ b/code/privilege-escalation/linux/binary/privesc-rc.yaml @@ -9,6 +9,7 @@ info: reference: - https://gtfobins.github.io/gtfobins/rc/ metadata: + max-request: 3 verified: true tags: code,linux,rc,privesc diff --git a/code/privilege-escalation/linux/binary/privesc-rlwrap.yaml b/code/privilege-escalation/linux/binary/privesc-rlwrap.yaml index 56624832a4..82039e21fe 100644 --- a/code/privilege-escalation/linux/binary/privesc-rlwrap.yaml +++ b/code/privilege-escalation/linux/binary/privesc-rlwrap.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/rlwrap/ metadata: verified: true + max-request: 3 tags: code,linux,rlwrap,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-rpm.yaml b/code/privilege-escalation/linux/binary/privesc-rpm.yaml index 9ea9a50f91..2a997df157 100644 --- a/code/privilege-escalation/linux/binary/privesc-rpm.yaml +++ b/code/privilege-escalation/linux/binary/privesc-rpm.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/rpm/ metadata: verified: true + max-request: 3 tags: code,linux,rpm,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-rpmdb.yaml b/code/privilege-escalation/linux/binary/privesc-rpmdb.yaml index 84c1221bab..7832de2d16 100644 --- a/code/privilege-escalation/linux/binary/privesc-rpmdb.yaml +++ b/code/privilege-escalation/linux/binary/privesc-rpmdb.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/rpmdb/ metadata: verified: true + max-request: 3 tags: code,linux,rpmdb,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-rpmverify.yaml b/code/privilege-escalation/linux/binary/privesc-rpmverify.yaml index 7bd4f0de08..e4532f4ef7 100644 --- a/code/privilege-escalation/linux/binary/privesc-rpmverify.yaml +++ b/code/privilege-escalation/linux/binary/privesc-rpmverify.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/rpmverify/ metadata: verified: true + max-request: 3 tags: code,linux,rpmverify,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-ruby.yaml b/code/privilege-escalation/linux/binary/privesc-ruby.yaml index d88f95743e..3325c40eb4 100644 --- a/code/privilege-escalation/linux/binary/privesc-ruby.yaml +++ b/code/privilege-escalation/linux/binary/privesc-ruby.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/ruby/ metadata: verified: true + max-request: 4 tags: code,linux,ruby,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-run-parts.yaml b/code/privilege-escalation/linux/binary/privesc-run-parts.yaml index a0fac17e83..c8ed6de8e0 100644 --- a/code/privilege-escalation/linux/binary/privesc-run-parts.yaml +++ b/code/privilege-escalation/linux/binary/privesc-run-parts.yaml @@ -8,6 +8,7 @@ info: The run-parts command in Linux is used to run all the executable files in a directory. It is commonly used for running scripts or commands located in a specific directory, such as system maintenance scripts in /etc/cron.daily. The run-parts command provides a convenient way to execute multiple scripts or commands in a batch manner. reference: https://gtfobins.github.io/gtfobins/run-parts/ metadata: + max-request: 3 verified: true tags: code,linux,run-parts,privesc diff --git a/code/privilege-escalation/linux/binary/privesc-sash.yaml b/code/privilege-escalation/linux/binary/privesc-sash.yaml index f5b8da130e..8155a87fab 100644 --- a/code/privilege-escalation/linux/binary/privesc-sash.yaml +++ b/code/privilege-escalation/linux/binary/privesc-sash.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/sash/ metadata: verified: true + max-request: 3 tags: code,linux,sash,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-slsh.yaml b/code/privilege-escalation/linux/binary/privesc-slsh.yaml index a80777ec59..02992e3b78 100644 --- a/code/privilege-escalation/linux/binary/privesc-slsh.yaml +++ b/code/privilege-escalation/linux/binary/privesc-slsh.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/slsh/ metadata: verified: true + max-request: 3 tags: code,linux,slsh,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-socat.yaml b/code/privilege-escalation/linux/binary/privesc-socat.yaml index 54a148c5e2..0ed0b80e1b 100644 --- a/code/privilege-escalation/linux/binary/privesc-socat.yaml +++ b/code/privilege-escalation/linux/binary/privesc-socat.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/socat/ metadata: verified: true + max-request: 3 tags: code,linux,socat,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-softlimit.yaml b/code/privilege-escalation/linux/binary/privesc-softlimit.yaml index 4f76aeadd8..80c1a2dd4d 100644 --- a/code/privilege-escalation/linux/binary/privesc-softlimit.yaml +++ b/code/privilege-escalation/linux/binary/privesc-softlimit.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/softlimit/ metadata: verified: true + max-request: 3 tags: code,linux,softlimit,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-sqlite3.yaml b/code/privilege-escalation/linux/binary/privesc-sqlite3.yaml index 46fba60000..84e016397a 100644 --- a/code/privilege-escalation/linux/binary/privesc-sqlite3.yaml +++ b/code/privilege-escalation/linux/binary/privesc-sqlite3.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/sqlite3/ metadata: verified: true + max-request: 3 tags: code,linux,sqlite3,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-ssh-agent.yaml b/code/privilege-escalation/linux/binary/privesc-ssh-agent.yaml index ac3e6bbd8c..ea7aa129fe 100644 --- a/code/privilege-escalation/linux/binary/privesc-ssh-agent.yaml +++ b/code/privilege-escalation/linux/binary/privesc-ssh-agent.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/ssh-agent/ metadata: verified: true + max-request: 3 tags: code,linux,ssh-agent,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-sshpass.yaml b/code/privilege-escalation/linux/binary/privesc-sshpass.yaml index 252844bac8..9ff654e53f 100644 --- a/code/privilege-escalation/linux/binary/privesc-sshpass.yaml +++ b/code/privilege-escalation/linux/binary/privesc-sshpass.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/sshpass/ metadata: verified: true + max-request: 3 tags: code,linux,sshpass,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-stdbuf.yaml b/code/privilege-escalation/linux/binary/privesc-stdbuf.yaml index 63ff88de0b..ea3297db57 100644 --- a/code/privilege-escalation/linux/binary/privesc-stdbuf.yaml +++ b/code/privilege-escalation/linux/binary/privesc-stdbuf.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/stdbuf/ metadata: verified: true + max-request: 3 tags: code,linux,stdbuf,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-strace.yaml b/code/privilege-escalation/linux/binary/privesc-strace.yaml index 3d72b1ef55..9160d0c653 100644 --- a/code/privilege-escalation/linux/binary/privesc-strace.yaml +++ b/code/privilege-escalation/linux/binary/privesc-strace.yaml @@ -9,6 +9,7 @@ info: reference: - https://gtfobins.github.io/gtfobins/strace/ metadata: + max-request: 3 verified: true tags: code,linux,strace,privesc diff --git a/code/privilege-escalation/linux/binary/privesc-tar.yaml b/code/privilege-escalation/linux/binary/privesc-tar.yaml index 42b6b20ba2..6d68dc6649 100644 --- a/code/privilege-escalation/linux/binary/privesc-tar.yaml +++ b/code/privilege-escalation/linux/binary/privesc-tar.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/tar/ metadata: verified: true + max-request: 3 tags: code,linux,tar,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-tcsh.yaml b/code/privilege-escalation/linux/binary/privesc-tcsh.yaml index 70aea661aa..bed2884d5d 100644 --- a/code/privilege-escalation/linux/binary/privesc-tcsh.yaml +++ b/code/privilege-escalation/linux/binary/privesc-tcsh.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/tcsh/ metadata: verified: true + max-request: 3 tags: code,linux,tcsh,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-time.yaml b/code/privilege-escalation/linux/binary/privesc-time.yaml index 04b8cbd0b1..10b0f85610 100644 --- a/code/privilege-escalation/linux/binary/privesc-time.yaml +++ b/code/privilege-escalation/linux/binary/privesc-time.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/time/ metadata: verified: true + max-request: 3 tags: code,linux,time,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-timeout.yaml b/code/privilege-escalation/linux/binary/privesc-timeout.yaml index 445b77a089..4e5caba0dc 100644 --- a/code/privilege-escalation/linux/binary/privesc-timeout.yaml +++ b/code/privilege-escalation/linux/binary/privesc-timeout.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/timeout/ metadata: verified: true + max-request: 3 tags: code,linux,timeout,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-tmate.yaml b/code/privilege-escalation/linux/binary/privesc-tmate.yaml index c0c86c038d..c8aadda97d 100644 --- a/code/privilege-escalation/linux/binary/privesc-tmate.yaml +++ b/code/privilege-escalation/linux/binary/privesc-tmate.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/tmate/ metadata: verified: true + max-request: 3 tags: code,linux,tmate,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-torify.yaml b/code/privilege-escalation/linux/binary/privesc-torify.yaml index a7c2a72aff..08e72cc2a9 100644 --- a/code/privilege-escalation/linux/binary/privesc-torify.yaml +++ b/code/privilege-escalation/linux/binary/privesc-torify.yaml @@ -9,6 +9,7 @@ info: reference: - https://gtfobins.github.io/gtfobins/torify/ metadata: + max-request: 3 verified: true tags: code,linux,torify,privesc diff --git a/code/privilege-escalation/linux/binary/privesc-torsocks.yaml b/code/privilege-escalation/linux/binary/privesc-torsocks.yaml index e4cad898c2..2c35131c8c 100644 --- a/code/privilege-escalation/linux/binary/privesc-torsocks.yaml +++ b/code/privilege-escalation/linux/binary/privesc-torsocks.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/torsocks/ metadata: verified: true + max-request: 3 tags: code,linux,torsocks,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-unshare.yaml b/code/privilege-escalation/linux/binary/privesc-unshare.yaml index efe615917a..4390b7ab35 100644 --- a/code/privilege-escalation/linux/binary/privesc-unshare.yaml +++ b/code/privilege-escalation/linux/binary/privesc-unshare.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/unshare/ metadata: verified: true + max-request: 3 tags: code,linux,unshare,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-vi.yaml b/code/privilege-escalation/linux/binary/privesc-vi.yaml index 8e46747bef..db644a14ea 100644 --- a/code/privilege-escalation/linux/binary/privesc-vi.yaml +++ b/code/privilege-escalation/linux/binary/privesc-vi.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/vi/ metadata: verified: true + max-request: 3 tags: code,linux,vi,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-view.yaml b/code/privilege-escalation/linux/binary/privesc-view.yaml index 94c5f38010..b91729c359 100644 --- a/code/privilege-escalation/linux/binary/privesc-view.yaml +++ b/code/privilege-escalation/linux/binary/privesc-view.yaml @@ -9,6 +9,7 @@ info: reference: - https://gtfobins.github.io/gtfobins/view/ metadata: + max-request: 3 verified: true tags: code,linux,view,privesc diff --git a/code/privilege-escalation/linux/binary/privesc-vim.yaml b/code/privilege-escalation/linux/binary/privesc-vim.yaml index bf000a57a9..63d50f5341 100644 --- a/code/privilege-escalation/linux/binary/privesc-vim.yaml +++ b/code/privilege-escalation/linux/binary/privesc-vim.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/vim/ metadata: verified: true + max-request: 3 tags: code,linux,vim,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-xargs.yaml b/code/privilege-escalation/linux/binary/privesc-xargs.yaml index c069196e25..f4b90e543f 100644 --- a/code/privilege-escalation/linux/binary/privesc-xargs.yaml +++ b/code/privilege-escalation/linux/binary/privesc-xargs.yaml @@ -9,6 +9,7 @@ info: reference: - https://gtfobins.github.io/gtfobins/xargs/ metadata: + max-request: 3 verified: true tags: code,linux,xargs,privesc diff --git a/code/privilege-escalation/linux/binary/privesc-xdg-user-dir.yaml b/code/privilege-escalation/linux/binary/privesc-xdg-user-dir.yaml index 70caff7317..f8c7767b55 100644 --- a/code/privilege-escalation/linux/binary/privesc-xdg-user-dir.yaml +++ b/code/privilege-escalation/linux/binary/privesc-xdg-user-dir.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/xdg-user-dir/ metadata: verified: true + max-request: 3 tags: code,linux,xdg-user-dir,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-yash.yaml b/code/privilege-escalation/linux/binary/privesc-yash.yaml index 62419d0325..bbfbf90e32 100644 --- a/code/privilege-escalation/linux/binary/privesc-yash.yaml +++ b/code/privilege-escalation/linux/binary/privesc-yash.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/yash/ metadata: verified: true + max-request: 3 tags: code,linux,yash,privesc self-contained: true diff --git a/code/privilege-escalation/linux/binary/privesc-zsh.yaml b/code/privilege-escalation/linux/binary/privesc-zsh.yaml index 3a0d1f4bc7..c86b9c9742 100644 --- a/code/privilege-escalation/linux/binary/privesc-zsh.yaml +++ b/code/privilege-escalation/linux/binary/privesc-zsh.yaml @@ -10,6 +10,7 @@ info: - https://gtfobins.github.io/gtfobins/zsh/ metadata: verified: true + max-request: 3 tags: code,linux,zsh,privesc self-contained: true diff --git a/code/privilege-escalation/linux/rw-shadow.yaml b/code/privilege-escalation/linux/rw-shadow.yaml index 5b5fa7d00f..04d3aeb0a2 100644 --- a/code/privilege-escalation/linux/rw-shadow.yaml +++ b/code/privilege-escalation/linux/rw-shadow.yaml @@ -7,6 +7,7 @@ info: reference: - https://book.hacktricks.xyz/linux-hardening/privilege-escalation#writable-etc-shadow metadata: + max-request: 2 verified: true tags: code,linux,privesc diff --git a/code/privilege-escalation/linux/rw-sudoers.yaml b/code/privilege-escalation/linux/rw-sudoers.yaml index 53f7b6a9b0..df737a16b4 100644 --- a/code/privilege-escalation/linux/rw-sudoers.yaml +++ b/code/privilege-escalation/linux/rw-sudoers.yaml @@ -8,6 +8,7 @@ info: - https://book.hacktricks.xyz/linux-hardening/privilege-escalation#etc-sudoers-etc-sudoers.d metadata: verified: true + max-request: 2 tags: code,linux,privesc self-contained: true diff --git a/dns/dns-rebinding.yaml b/dns/dns-rebinding.yaml index 19b11b8a41..7ae73675c7 100644 --- a/dns/dns-rebinding.yaml +++ b/dns/dns-rebinding.yaml @@ -16,6 +16,7 @@ info: cwe-id: CWE-350 metadata: verified: true + max-request: 2 tags: redirect,dns,network dns: diff --git a/http/cves/2018/CVE-2018-10942.yaml b/http/cves/2018/CVE-2018-10942.yaml index 6c9254da5c..2aa5037ea7 100644 --- a/http/cves/2018/CVE-2018-10942.yaml +++ b/http/cves/2018/CVE-2018-10942.yaml @@ -13,7 +13,7 @@ info: classification: cve-id: CVE-2018-10942 metadata: - max-request: 2 + max-request: 8 tags: prestashop,attributewizardpro,intrusive,file-upload variables: diff --git a/http/cves/2020/CVE-2020-27838.yaml b/http/cves/2020/CVE-2020-27838.yaml index db9ebaf26c..df21193e8e 100644 --- a/http/cves/2020/CVE-2020-27838.yaml +++ b/http/cves/2020/CVE-2020-27838.yaml @@ -6,25 +6,26 @@ info: severity: medium description: | A flaw was found in keycloak in versions prior to 13.0.0. The client registration endpoint allows fetching information about PUBLIC clients (like client secret) without authentication which could be an issue if the same PUBLIC client changed to CONFIDENTIAL later. The highest threat from this vulnerability is to data confidentiality. + reference: + - https://bugzilla.redhat.com/show_bug.cgi?id=1906797 + - https://nvd.nist.gov/vuln/detail/CVE-2020-27838 impact: | The vulnerability allows an attacker to gain sensitive information from the KeyCloak server. remediation: | Apply the latest security patches or updates provided by the KeyCloak vendor. - reference: - - https://bugzilla.redhat.com/show_bug.cgi?id=1906797 - - https://nvd.nist.gov/vuln/detail/CVE-2020-27838 classification: cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N cvss-score: 6.5 cve-id: CVE-2020-27838 cwe-id: CWE-287 + cpe: cpe:2.3:a:redhat:keycloak:*:*:*:*:*:*:*:* epss-score: 0.00154 epss-percentile: 0.5163 - cpe: cpe:2.3:a:redhat:keycloak:*:*:*:*:*:*:*:* metadata: vendor: redhat product: keycloak - shodan-query: title:"keycloak" + shodan-query: "title:\"keycloak\"" + max-request: 1 tags: cve,cve2020,keyclock,exposure http: diff --git a/http/cves/2022/CVE-2022-47501.yaml b/http/cves/2022/CVE-2022-47501.yaml index 09215836e8..385612fe6b 100644 --- a/http/cves/2022/CVE-2022-47501.yaml +++ b/http/cves/2022/CVE-2022-47501.yaml @@ -17,14 +17,15 @@ info: cvss-score: 7.5 cve-id: CVE-2022-47501 cwe-id: CWE-22 + cpe: cpe:2.3:a:apache:ofbiz:*:*:*:*:*:*:*:* epss-score: 0.00183 epss-percentile: 0.55601 - cpe: cpe:2.3:a:apache:ofbiz:*:*:*:*:*:*:*:* metadata: - vendor: apache product: ofbiz - shodan-query: html:"OFBiz" - fofa-query: app="Apache_OFBiz" + shodan-query: "html:\"OFBiz\"" + fofa-query: "app=\"Apache_OFBiz\"" + max-request: 2 + vendor: apache tags: cve,cve2022,apache,ofbiz,lfi http: diff --git a/http/cves/2023/CVE-2023-46805.yaml b/http/cves/2023/CVE-2023-46805.yaml index 971c004348..48fd708c75 100644 --- a/http/cves/2023/CVE-2023-46805.yaml +++ b/http/cves/2023/CVE-2023-46805.yaml @@ -16,8 +16,9 @@ info: cpe: cpe:2.3:a:ivanti:connect_secure:9.0:*:*:*:*:*:*:* metadata: vendor: ivanti - product: connect_secure - shodan-query: html:"welcome.cgi?p=logo" + product: "connect_secure" + shodan-query: "html:\"welcome.cgi?p=logo\"" + max-request: 1 tags: cve,cve2023,kev,auth-bypass,ivanti http: diff --git a/http/cves/2023/CVE-2023-47211.yaml b/http/cves/2023/CVE-2023-47211.yaml index 41c54ab4b7..b2cf4f82ce 100644 --- a/http/cves/2023/CVE-2023-47211.yaml +++ b/http/cves/2023/CVE-2023-47211.yaml @@ -14,12 +14,12 @@ info: cvss-score: 8.6 cve-id: CVE-2023-47211 cwe-id: CWE-22 - epss-score: 0.000610000 - epss-percentile: 0.238320000 cpe: cpe:2.3:a:zohocorp:manageengine_firewall_analyzer:*:*:*:*:*:*:*:* + epss-score: 0.00061 + epss-percentile: 0.23832 metadata: - max-request: 1 - shodan-query: http.title:"OpManager Plus" + max-request: 3 + shodan-query: "http.title:\"OpManager Plus\"" tags: cve,cve2023,zoho,manageengine,authenticated,traversal,lfi http: diff --git a/http/cves/2023/CVE-2023-50290.yaml b/http/cves/2023/CVE-2023-50290.yaml index dfdccd010f..b2c5721166 100644 --- a/http/cves/2023/CVE-2023-50290.yaml +++ b/http/cves/2023/CVE-2023-50290.yaml @@ -7,15 +7,16 @@ info: description: | Exposure of Sensitive Information to an Unauthorized Actor Vulnerability in Apache Solr. The Solr Metrics API publishes all unprotected environment variables available to each Apache Solr instance. Users can specify which environment variables to hide, however, the default list is designed to work for known secret Java system properties. Environment variables cannot be strictly defined in Solr, like Java system properties can be, and may be set for the entire host,unlike Java system properties which are set per-Java-proccess. - impact: | - This vulnerability can lead to the exposure of sensitive information, potentially allowing an attacker to gain unauthorized access or perform further attacks. - remediation: Users are recommended to upgrade to version 9.3.0 or later, in which environment variables are not published via the Metrics API. reference: - https://solr.apache.org/security.html#cve-2023-50290-apache-solr-allows-read-access-to-host-environment-variables - https://x.com/sirifu4k1/status/1746755165066236216?s=20 - https://nvd.nist.gov/vuln/detail/CVE-2023-50290 + impact: | + This vulnerability can lead to the exposure of sensitive information, potentially allowing an attacker to gain unauthorized access or perform further attacks. + remediation: Users are recommended to upgrade to version 9.3.0 or later, in which environment variables are not published via the Metrics API. metadata: - shodan-query: title:"Apache Solr" + shodan-query: "title:\"Apache Solr\"" + max-request: 1 tags: cve,cve2023,apache,solr,exposure http: diff --git a/http/cves/2023/CVE-2023-6875.yaml b/http/cves/2023/CVE-2023-6875.yaml index 8b9ee30f1f..babbd52b83 100644 --- a/http/cves/2023/CVE-2023-6875.yaml +++ b/http/cves/2023/CVE-2023-6875.yaml @@ -18,7 +18,7 @@ info: cvss-score: 9.8 cve-id: CVE-2023-6875 metadata: - max-request: 1 + max-request: 3 verified: true publicwww-query: "/wp-content/plugins/post-smtp" tags: cve,cve2023,wp,wp-plugin,wordpress,smtp,mailer,auth-bypass diff --git a/http/cves/2024/CVE-2024-21887.yaml b/http/cves/2024/CVE-2024-21887.yaml index a00fa4839b..8781779bc2 100644 --- a/http/cves/2024/CVE-2024-21887.yaml +++ b/http/cves/2024/CVE-2024-21887.yaml @@ -14,9 +14,10 @@ info: cwe-id: CWE-77 cpe: cpe:2.3:a:ivanti:connect_secure:9.0:*:*:*:*:*:*:* metadata: + shodan-query: "html:\"welcome.cgi?p=logo\"" + max-request: 1 vendor: ivanti - product: connect_secure - shodan-query: html:"welcome.cgi?p=logo" + product: "connect_secure" tags: cve,cve2024,kev,rce,ivanti http: diff --git a/http/default-logins/node-red/nodered-default-login.yaml b/http/default-logins/node-red/nodered-default-login.yaml index 98356d09cd..9a8edfc751 100644 --- a/http/default-logins/node-red/nodered-default-login.yaml +++ b/http/default-logins/node-red/nodered-default-login.yaml @@ -5,12 +5,12 @@ info: author: savik severity: critical description: | - Allows attacker to log in and execute RCE on the Node-Red panel using the default credentials. + Allows attacker to log in and execute RCE on the Node-Red panel using the default credentials. reference: - https://quentinkaiser.be/pentesting/2018/09/07/node-red-rce/ metadata: - max-request: 1 verified: true + max-request: 1 shodan-query: http.favicon.hash:321591353 tags: default-login,node-red,dashboard diff --git a/http/default-logins/powershell/powershell-default-login.yaml b/http/default-logins/powershell/powershell-default-login.yaml index eb2a4f5e4e..6621048f03 100644 --- a/http/default-logins/powershell/powershell-default-login.yaml +++ b/http/default-logins/powershell/powershell-default-login.yaml @@ -9,9 +9,9 @@ info: reference: - https://ironmansoftware.com/powershell-universal metadata: - max-request: 1 - shodan-query: html:"PowerShell Universal" verified: true + max-request: 3 + shodan-query: "html:\"PowerShell Universal\"" tags: default-login,powershell-universal http: diff --git a/http/exposed-panels/autoset-detect.yaml b/http/exposed-panels/autoset-detect.yaml index 198af91b23..f53075a970 100644 --- a/http/exposed-panels/autoset-detect.yaml +++ b/http/exposed-panels/autoset-detect.yaml @@ -7,8 +7,8 @@ info: reference: - http://autoset.net/xe/ metadata: - max-request: 1 verified: true + max-request: 1 shodan-query: title:"AutoSet" tags: tech,php,autoset,apache diff --git a/http/exposed-panels/compalex-panel-detect.yaml b/http/exposed-panels/compalex-panel-detect.yaml index 0fba453f08..c7f383accf 100644 --- a/http/exposed-panels/compalex-panel-detect.yaml +++ b/http/exposed-panels/compalex-panel-detect.yaml @@ -8,7 +8,8 @@ info: - http://compalex.net/ metadata: verified: true - shodan-query: title:"COMPALEX" + max-request: 15 + shodan-query: "title:\"COMPALEX\"" tags: tech,php,compalex,sql http: diff --git a/http/exposed-panels/doris-panel.yaml b/http/exposed-panels/doris-panel.yaml index ee2a801aeb..0862e71aac 100644 --- a/http/exposed-panels/doris-panel.yaml +++ b/http/exposed-panels/doris-panel.yaml @@ -6,8 +6,8 @@ info: severity: info description: Doris panel detection template. metadata: - max-request: 1 verified: true + max-request: 1 shodan-query: http.favicon.hash:24048806 tags: doris,panel,login,detect diff --git a/http/exposed-panels/goodjob-dashboard.yaml b/http/exposed-panels/goodjob-dashboard.yaml index e38a46a116..2497713a58 100644 --- a/http/exposed-panels/goodjob-dashboard.yaml +++ b/http/exposed-panels/goodjob-dashboard.yaml @@ -9,8 +9,8 @@ info: reference: - https://github.com/bensheldon/good_job metadata: - max-request: 2 verified: true + max-request: 2 tags: unauth,panel,goodjob http: diff --git a/http/exposed-panels/lomnido-panel.yaml b/http/exposed-panels/lomnido-panel.yaml index 9f2cc136e8..b04b5f0664 100644 --- a/http/exposed-panels/lomnido-panel.yaml +++ b/http/exposed-panels/lomnido-panel.yaml @@ -9,8 +9,8 @@ info: reference: - https://lomnido.com/ metadata: - max-request: 1 verified: true + max-request: 1 shodan-query: http.title:"Lomnido Login" tags: lomnido,panel,login,detect diff --git a/http/exposed-panels/securenvoy-panel.yaml b/http/exposed-panels/securenvoy-panel.yaml index 97e9fd659f..99d1c55f66 100644 --- a/http/exposed-panels/securenvoy-panel.yaml +++ b/http/exposed-panels/securenvoy-panel.yaml @@ -9,11 +9,10 @@ info: - https://securenvoy.com/ classification: cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N - cvss-score: 0 cwe-id: CWE-200 metadata: - max-request: 1 - shodan-query: http.title:"securenvoy" + max-request: 4 + shodan-query: "http.title:\"securenvoy\"" tags: panel,securenvoy http: diff --git a/http/exposed-panels/vault-panel.yaml b/http/exposed-panels/vault-panel.yaml index 7c1727032a..89eeca6159 100644 --- a/http/exposed-panels/vault-panel.yaml +++ b/http/exposed-panels/vault-panel.yaml @@ -10,8 +10,8 @@ info: cvss-score: 0 cwe-id: CWE-200 metadata: - max-request: 2 verified: true + max-request: 2 shodan-query: http.favicon.hash:-919788577 tags: panel,vault,detect diff --git a/http/exposures/backups/php-backup-files.yaml b/http/exposures/backups/php-backup-files.yaml index 438f0d57d2..e2690bf5f6 100644 --- a/http/exposures/backups/php-backup-files.yaml +++ b/http/exposures/backups/php-backup-files.yaml @@ -6,7 +6,7 @@ info: severity: medium description: PHP Source File is disclosed to external users. metadata: - max-request: 1222 + max-request: 1512 tags: exposure,backup,php,disclosure,fuzz http: diff --git a/http/exposures/backups/settings-php-files.yaml b/http/exposures/backups/settings-php-files.yaml index 041af049bd..32c74bf783 100644 --- a/http/exposures/backups/settings-php-files.yaml +++ b/http/exposures/backups/settings-php-files.yaml @@ -10,7 +10,7 @@ info: cvss-score: 5.3 cwe-id: CWE-200 metadata: - max-request: 6 + max-request: 7 tags: exposure,backup http: diff --git a/http/exposures/backups/sql-dump.yaml b/http/exposures/backups/sql-dump.yaml index 279e43535d..cfe7d6a5c5 100644 --- a/http/exposures/backups/sql-dump.yaml +++ b/http/exposures/backups/sql-dump.yaml @@ -10,7 +10,7 @@ info: cvss-score: 5.3 cwe-id: CWE-200 metadata: - max-request: 20 + max-request: 21 tags: exposure,backup,mysql http: diff --git a/http/exposures/backups/zip-backup-files.yaml b/http/exposures/backups/zip-backup-files.yaml index 3ee1b07a6e..a4306304e7 100644 --- a/http/exposures/backups/zip-backup-files.yaml +++ b/http/exposures/backups/zip-backup-files.yaml @@ -10,7 +10,7 @@ info: cvss-score: 5.3 cwe-id: CWE-200 metadata: - max-request: 650 + max-request: 1440 tags: exposure,backup http: diff --git a/http/exposures/configs/dockerfile-hidden-disclosure.yaml b/http/exposures/configs/dockerfile-hidden-disclosure.yaml index 9909096459..d29d876736 100644 --- a/http/exposures/configs/dockerfile-hidden-disclosure.yaml +++ b/http/exposures/configs/dockerfile-hidden-disclosure.yaml @@ -12,7 +12,7 @@ info: cvss-score: 5.3 cwe-id: CWE-200 metadata: - max-request: 2 + max-request: 3 tags: exposure,config http: diff --git a/http/exposures/configs/phpinfo-files.yaml b/http/exposures/configs/phpinfo-files.yaml index 82f54d8706..4cde71c17c 100644 --- a/http/exposures/configs/phpinfo-files.yaml +++ b/http/exposures/configs/phpinfo-files.yaml @@ -10,7 +10,7 @@ info: classification: cwe-id: CWE-200 metadata: - max-request: 22 + max-request: 25 tags: config,exposure,phpinfo http: diff --git a/http/exposures/configs/vbulletin-path-disclosure.yaml b/http/exposures/configs/vbulletin-path-disclosure.yaml index c6b5d74236..024f30008b 100644 --- a/http/exposures/configs/vbulletin-path-disclosure.yaml +++ b/http/exposures/configs/vbulletin-path-disclosure.yaml @@ -7,11 +7,10 @@ info: reference: - https://github.com/OWASP/vbscan/blob/master/modules/pathdisclure.pl metadata: - max-request: 10 verified: true - shodan-query: title:"vBulletin" + max-request: 11 + shodan-query: "title:\"vBulletin\"" tags: config,exposure,fpd,vbulletin - flow: http(1) && http(2) http: diff --git a/http/exposures/files/reactapp-env-js.yaml b/http/exposures/files/reactapp-env-js.yaml index 23c09d30a0..0ddca7c241 100644 --- a/http/exposures/files/reactapp-env-js.yaml +++ b/http/exposures/files/reactapp-env-js.yaml @@ -6,7 +6,7 @@ info: severity: unknown metadata: verified: true - max-request: 2 + max-request: 4 github-query: "REACT_APP_" tags: react,exposure,config,js,javascript diff --git a/http/exposures/files/shellscripts.yaml b/http/exposures/files/shellscripts.yaml index 48a8980f3c..989595df5c 100644 --- a/http/exposures/files/shellscripts.yaml +++ b/http/exposures/files/shellscripts.yaml @@ -6,7 +6,7 @@ info: severity: low description: This template checks exposure of bash scripts. metadata: - max-request: 23 + max-request: 27 tags: bash,exposure,files http: diff --git a/http/exposures/logs/go-pprof-debug.yaml b/http/exposures/logs/go-pprof-debug.yaml index cd9b8f1082..b64874749d 100644 --- a/http/exposures/logs/go-pprof-debug.yaml +++ b/http/exposures/logs/go-pprof-debug.yaml @@ -5,6 +5,8 @@ info: author: w8ay severity: low description: go pprof debug page was exposed. + metadata: + max-request: 2 tags: logs,exposure,go,pprof http: diff --git a/http/miscellaneous/defacement-detect.yaml b/http/miscellaneous/defacement-detect.yaml index 99dcda5eff..16a165fde3 100644 --- a/http/miscellaneous/defacement-detect.yaml +++ b/http/miscellaneous/defacement-detect.yaml @@ -15,6 +15,7 @@ info: - https://www.radware.com/security/threat-advisories-and-attack-reports/hacktivism-unveiled-april-2023 metadata: verified: true + max-request: 85 tags: misc,defacement,spam,hacktivism,fuzz http: diff --git a/http/misconfiguration/doris-dashboard.yaml b/http/misconfiguration/doris-dashboard.yaml index 3db11839cc..49212ffd0d 100644 --- a/http/misconfiguration/doris-dashboard.yaml +++ b/http/misconfiguration/doris-dashboard.yaml @@ -6,8 +6,8 @@ info: severity: medium description: Unauthorized access to the Doris Dashboard. metadata: - max-request: 1 verified: true + max-request: 1 shodan-query: http.favicon.hash:24048806 tags: doris,exposure,unauth,logs diff --git a/http/technologies/tibco-businessconnect-detect.yaml b/http/technologies/tibco-businessconnect-detect.yaml index a84400667b..6c5151452e 100644 --- a/http/technologies/tibco-businessconnect-detect.yaml +++ b/http/technologies/tibco-businessconnect-detect.yaml @@ -5,12 +5,12 @@ info: author: righettod severity: info description: | - TIBCO BusinessConnect technology was detected. + TIBCO BusinessConnect technology was detected. reference: - https://www.tibco.com/products/tibco-businessconnect metadata: - max-request: 1 verified: true + max-request: 1 shodan-query: http.html:"TIBCO BusinessConnect" tags: tibco,detect,tech diff --git a/http/vulnerabilities/apache/apache-nifi-rce.yaml b/http/vulnerabilities/apache/apache-nifi-rce.yaml index d4a2c81cc7..10ca7e4f80 100644 --- a/http/vulnerabilities/apache/apache-nifi-rce.yaml +++ b/http/vulnerabilities/apache/apache-nifi-rce.yaml @@ -12,8 +12,9 @@ info: - https://packetstormsecurity.com/files/160260/apache_nifi_processor_rce.rb.txt metadata: verified: true - shodan-query: title:"NiFi" - tags: apache,nifi,rce + max-request: 1 + shodan-query: "title:\"NiFi\"" + tags: packetstorm,apache,nifi,rce http: - method: GET diff --git a/http/vulnerabilities/prestashop/prestashop-blocktestimonial-file-upload.yaml b/http/vulnerabilities/prestashop/prestashop-blocktestimonial-file-upload.yaml index d530ab1c93..cb9a2ef4cd 100644 --- a/http/vulnerabilities/prestashop/prestashop-blocktestimonial-file-upload.yaml +++ b/http/vulnerabilities/prestashop/prestashop-blocktestimonial-file-upload.yaml @@ -9,8 +9,9 @@ info: - https://github.com/indoxploit-coders/blocktestimonial-file-upload - https://exploit.linuxsec.org/prestashop-module-blocktestimonial-file-upload-auto-exploit metadata: + max-request: 2 framework: prestashop - shodan-query: http.component:"prestashop" + shodan-query: "http.component:\"prestashop\"" tags: intrusive,file-upload,blocktestimonial,prestashop variables: diff --git a/http/vulnerabilities/vbulletin/vbulletin-backdoor.yaml b/http/vulnerabilities/vbulletin/vbulletin-backdoor.yaml index 599ad9d5fa..f7dd84f449 100644 --- a/http/vulnerabilities/vbulletin/vbulletin-backdoor.yaml +++ b/http/vulnerabilities/vbulletin/vbulletin-backdoor.yaml @@ -7,6 +7,8 @@ info: reference: - https://github.com/OWASP/vbscan - https://blog.sucuri.net/2017/01/vbulletin-malware-hackers-compete-backdoor-control.html + metadata: + max-request: 31 tags: backdoor,php,vbulletin,rce flow: http(1) && http(2) diff --git a/http/vulnerabilities/wordpress/wp-tinymce-lfi.yaml b/http/vulnerabilities/wordpress/wp-tinymce-lfi.yaml index af0d6b04fe..83823d85cf 100644 --- a/http/vulnerabilities/wordpress/wp-tinymce-lfi.yaml +++ b/http/vulnerabilities/wordpress/wp-tinymce-lfi.yaml @@ -14,7 +14,7 @@ info: cwe-id: CWE-22 metadata: max-request: 1 - tags: wordpress,wp-theme,lfi,tinymce + tags: wpscan,wordpress,wp-theme,lfi,tinymce http: - method: GET diff --git a/javascript/cves/2024/CVE-2024-23897.yaml b/javascript/cves/2024/CVE-2024-23897.yaml index 3f022cad4f..f1e9f111af 100644 --- a/javascript/cves/2024/CVE-2024-23897.yaml +++ b/javascript/cves/2024/CVE-2024-23897.yaml @@ -10,10 +10,11 @@ info: - https://www.jenkins.io/security/advisory/2024-01-24/#SECURITY-3314 - https://www.sonarsource.com/blog/excessive-expansion-uncovering-critical-security-vulnerabilities-in-jenkins/ metadata: - verified: true - shodan-query: product:"Jenkins" product: jenkins vendor: jenkins + max-request: 1 + verified: true + shodan-query: "product:\"Jenkins\"" tags: cve,cve2024,lfi,rce,jenkins variables: diff --git a/network/default-login/ftp-weak-credentials.yaml b/network/default-login/ftp-weak-credentials.yaml index 110f9fb169..0aa0910ddf 100644 --- a/network/default-login/ftp-weak-credentials.yaml +++ b/network/default-login/ftp-weak-credentials.yaml @@ -11,7 +11,7 @@ info: cvss-metrics: 3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N cvss-score: 8.5 metadata: - max-request: 14 + max-request: 1 tags: network,ftp,default-login,service tcp: