Added applicable filters

2024-03-26 12:51:56 +05:30 · 2024-03-26 12:51:56 +05:30 · 5f8762b8b6
parent b5da448525
commit 5f8762b8b6
19 changed files with 76 additions and 58 deletions
--- a/dast/cves/2018/CVE-2018-19518.yaml
+++ b/dast/cves/2018/CVE-2018-19518.yaml
@ -21,9 +21,10 @@ info:
  tags: imap,dast,vulhub,cve,cve2018,rce,oast,php

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    payloads:
      php-imap:
--- a/dast/cves/2021/CVE-2021-45046.yaml
+++ b/dast/cves/2021/CVE-2021-45046.yaml
@ -21,9 +21,10 @@ info:
  tags: cve,cve2021,rce,oast,log4j,injection,dast

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    payloads:
      log4j:
--- a/dast/cves/2022/CVE-2022-34265.yaml
+++ b/dast/cves/2022/CVE-2022-34265.yaml
@ -22,9 +22,10 @@ variables:
  rand_string: '{{rand_text_alpha(15, "abc")}}'

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    fuzzing:
      - part: query
--- a/dast/cves/2022/CVE-2022-42889.yaml
+++ b/dast/cves/2022/CVE-2022-42889.yaml
@ -23,9 +23,10 @@ info:
  tags: cve,cve2022,rce,oast,text4shell,dast

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    payloads:
      text4shell:
--- a/dast/vulnerabilities/cmdi/blind-oast-polyglots.yaml
+++ b/dast/vulnerabilities/cmdi/blind-oast-polyglots.yaml
@ -16,9 +16,10 @@ variables:
  marker: "{{interactsh-url}}"

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    payloads:
      interaction:
--- a/dast/vulnerabilities/cmdi/ruby-open-rce.yaml
+++ b/dast/vulnerabilities/cmdi/ruby-open-rce.yaml
@ -15,9 +15,10 @@ variables:
  marker: "{{interactsh-url}}"

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    stop-at-first-match: true
    payloads:
--- a/dast/vulnerabilities/crlf/cookie-injection.yaml
+++ b/dast/vulnerabilities/crlf/cookie-injection.yaml
@ -13,9 +13,10 @@ variables:
  first: "cookie_injection"

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    payloads:
      reflection:
--- a/dast/vulnerabilities/crlf/crlf-injection.yaml
+++ b/dast/vulnerabilities/crlf/crlf-injection.yaml
@ -7,10 +7,10 @@ info:
  tags: crlf,dast

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
-
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'
    payloads:
      escape:
        - "%00"
--- a/dast/vulnerabilities/lfi/lfi-keyed.yaml
+++ b/dast/vulnerabilities/lfi/lfi-keyed.yaml
@ -19,9 +19,10 @@ variables:
  fuzz_bypass_waf_regx: "./.././.././.././.././.././.././.././.././.././.././.././.././.././.././../"

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    payloads:
      pathtraversal:
--- a/dast/vulnerabilities/lfi/linux-lfi-fuzz.yaml
+++ b/dast/vulnerabilities/lfi/linux-lfi-fuzz.yaml
@ -10,9 +10,10 @@ info:
  tags: lfi,dast,linux

 http:
-  - method: GET
-    path:
-      - '{{BaseURL}}'
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    payloads:
      nix_fuzz:
--- a/dast/vulnerabilities/lfi/windows-lfi-fuzz.yaml
+++ b/dast/vulnerabilities/lfi/windows-lfi-fuzz.yaml
@ -7,9 +7,10 @@ info:
  tags: lfi,windows,dast

 http:
-  - method: GET
-    path:
-      - '{{BaseURL}}'
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    payloads:
      win_fuzz:
--- a/dast/vulnerabilities/redirect/open-redirect.yaml
+++ b/dast/vulnerabilities/redirect/open-redirect.yaml
@ -7,9 +7,10 @@ info:
  tags: redirect,dast

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    payloads:
      redirect:
--- a/dast/vulnerabilities/rfi/rfi.yaml
+++ b/dast/vulnerabilities/rfi/rfi.yaml
@ -9,9 +9,10 @@ info:
  tags: rfi,dast,oast

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    payloads:
      rfi:
--- a/dast/vulnerabilities/sqli/error-based.yaml
+++ b/dast/vulnerabilities/sqli/error-based.yaml
@ -11,9 +11,10 @@ info:
  tags: sqli,error,dast

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    payloads:
      injection:
--- a/dast/vulnerabilities/ssrf/blind-ssrf.yaml
+++ b/dast/vulnerabilities/ssrf/blind-ssrf.yaml
@ -7,9 +7,10 @@ info:
  tags: ssrf,dast,oast

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    payloads:
      ssrf:
--- a/dast/vulnerabilities/ssrf/response-ssrf.yaml
+++ b/dast/vulnerabilities/ssrf/response-ssrf.yaml
@ -9,9 +9,10 @@ info:
  tags: ssrf,dast

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    payloads:
      ssrf:
--- a/dast/vulnerabilities/ssti/reflection-ssti.yaml
+++ b/dast/vulnerabilities/ssti/reflection-ssti.yaml
@ -15,9 +15,10 @@ variables:
  result: "{{to_number(first)*to_number(second)}}"

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    skip-variables-check: true
    payloads:
--- a/dast/vulnerabilities/xss/reflected-xss.yaml
+++ b/dast/vulnerabilities/xss/reflected-xss.yaml
@ -10,9 +10,10 @@ variables:
  first: "{{rand_int(10000, 99999)}}"

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    payloads:
      reflection:
--- a/dast/vulnerabilities/xxe/fuzz-xxe.yaml
+++ b/dast/vulnerabilities/xxe/fuzz-xxe.yaml
@ -12,9 +12,10 @@ variables:
  rletter: "{{rand_base(6,'abc')}}"

 http:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
+  - filters:
+      - type: dsl
+        dsl:
+          - 'method == "GET"'

    payloads:
      xxe: