replaced fuzz tag to brute-force

patch-1
Prince Chaddha 2024-02-12 23:02:40 +05:30
parent 521a044901
commit 652903d374
38 changed files with 38 additions and 38 deletions

View File

@ -9,7 +9,7 @@ info:
metadata:
verified: true
max-request: 1
tags: cloud,cloud-enum,azure,fuzz,enum
tags: cloud,cloud-enum,azure,brute-force,enum
self-contained: true

View File

@ -20,7 +20,7 @@ type:
exclude-tags:
- tech
- dos
- fuzz
- brute-force
- creds-stuffing
- token-spray
- osint

View File

@ -15,5 +15,5 @@ type:
exclude-tags:
- dos
- fuzz
- brute-force
- osint

View File

@ -20,7 +20,7 @@ type:
exclude-tags:
- tech
- dos
- fuzz
- brute-force
- creds-stuffing
- token-spray
- osint

View File

@ -28,7 +28,7 @@ info:
max-request: 65
vendor: embedthis
product: goahead
tags: cve,cve2017,rce,goahead,fuzz,kev,vulhub,embedthis
tags: cve,cve2017,rce,goahead,brute-force,kev,vulhub,embedthis
http:
- raw:

View File

@ -27,7 +27,7 @@ info:
max-request: 100
vendor: zabbix
product: zabbix
tags: cve2019,cve,fuzz,auth-bypass,login,edb,zabbix
tags: cve2019,cve,brute-force,auth-bypass,login,edb,zabbix
http:
- raw:

View File

@ -28,7 +28,7 @@ info:
vendor: automattic
product: sensei_lms
framework: wordpress
tags: cve,cve2022,wp,disclosure,wpscan,sensei-lms,fuzz,hackerone,wordpress,wp-plugin,automattic
tags: cve,cve2022,wp,disclosure,wpscan,sensei-lms,brute-force,hackerone,wordpress,wp-plugin,automattic
http:
- method: GET

View File

@ -28,7 +28,7 @@ info:
vendor: citrix
product: sharefile_storage_zones_controller
shodan-query: title:"ShareFile Storage Server"
tags: cve2023,cve,sharefile,rce,intrusive,fileupload,fuzz,kev,citrix
tags: cve2023,cve,sharefile,rce,intrusive,fileupload,brute-force,kev,citrix
variables:
fileName: '{{rand_base(8)}}'

View File

@ -16,7 +16,7 @@ info:
verified: true
max-request: 200
shodan-query: title:"Oracle PeopleSoft Sign-in"
tags: default-login,peoplesoft,oracle,fuzz
tags: default-login,peoplesoft,oracle,brute-force
http:
- method: POST

View File

@ -17,7 +17,7 @@ info:
# Is generally handy if you find SQL creds
metadata:
max-request: 741
tags: panel,fuzz,adminer,login,sqli
tags: panel,brute-force,adminer,login,sqli
http:
- raw:

View File

@ -7,7 +7,7 @@ info:
description: PHP Source File is disclosed to external users.
metadata:
max-request: 1512
tags: exposure,backup,php,disclosure,fuzz
tags: exposure,backup,php,disclosure,brute-force
http:
- method: GET

View File

@ -9,7 +9,7 @@ info:
- https://portswigger.net/web-security/web-cache-poisoning
metadata:
max-request: 5834
tags: fuzzing,fuzz,cache
tags: fuzzing,brute-force,cache
http:
- raw:

View File

@ -11,7 +11,7 @@ info:
cwe-id: CWE-77
metadata:
max-request: 7650
tags: fuzzing,fuzz,rce
tags: fuzzing,brute-force,rce
http:
- raw:

View File

@ -15,7 +15,7 @@ info:
cwe-id: CWE-200
metadata:
max-request: 4
tags: fuzzing,fuzz,edb
tags: brute,edb
http:
- raw:

View File

@ -11,7 +11,7 @@ info:
cwe-id: CWE-200
metadata:
max-request: 22
tags: fuzzing,linux,lfi,fuzz
tags: fuzzing,linux,lfi,brute-force
http:
- method: GET

View File

@ -13,7 +13,7 @@ info:
cwe-id: CWE-200
metadata:
max-request: 341
tags: fuzzing,fuzz,mdb,asp
tags: brute,mdb,asp
http:
- raw:

View File

@ -6,7 +6,7 @@ info:
severity: info
metadata:
max-request: 639
tags: fuzzing,fuzz,prestashop
tags: fuzzing,brute-force,prestashop
http:
- raw:

View File

@ -10,7 +10,7 @@ info:
- https://twitter.com/ImoJOnDz/status/1649089777629827072
metadata:
max-request: 9
tags: fuzzing,ssrf,proxy,oast,fuzz
tags: ssrf,proxy,oast,brute-force
http:
- payloads:

View File

@ -8,7 +8,7 @@ info:
- https://github.com/dievus/geeMailUserFinder
metadata:
max-request: 1
tags: fuzzing,fuzz,gmail
tags: brute-force,gmail
self-contained: true

View File

@ -11,7 +11,7 @@ info:
cwe-id: CWE-200
metadata:
max-request: 58
tags: fuzzing,waf,tech,fuzz
tags: fuzzing,waf,tech,brute-force
http:
- raw:

View File

@ -6,7 +6,7 @@ info:
severity: info
metadata:
max-request: 98135
tags: fuzzing,fuzz,wordpress
tags: fuzzing,brute-force,wordpress
http:
- raw:

View File

@ -6,7 +6,7 @@ info:
severity: info
metadata:
max-request: 24434
tags: fuzzing,fuzz,wordpress
tags: brute,wordpress,wp
http:
- raw:

View File

@ -14,7 +14,7 @@ info:
cwe-id: CWE-1391
metadata:
max-request: 276
tags: fuzzing,wordpress,default-login,fuzz
tags: wordpress,default-login,brute-force
http:
- raw:

View File

@ -7,7 +7,7 @@ info:
description: Template to detect 403 forbidden endpoint bypass behind Nginx/Apache proxy & load balancers, based on X-Forwarded-For header.
metadata:
max-request: 3
tags: fuzzing,fuzz
tags: fuzzing,brute-force
http:
- raw:

View File

@ -16,7 +16,7 @@ info:
metadata:
verified: true
max-request: 85
tags: misc,defacement,spam,hacktivism,fuzz
tags: misc,defacement,spam,hacktivism,brute-force
http:
- method: GET

View File

@ -8,7 +8,7 @@ info:
- https://medium.com/swlh/internal-information-disclosure-using-hidden-ntlm-authentication-18de17675666
metadata:
max-request: 47
tags: miscellaneous,misc,fuzz,windows
tags: miscellaneous,misc,brute-force,windows
http:
- raw:

View File

@ -8,7 +8,7 @@ info:
metadata:
max-request: 1
shodan-query: http.component:"Adobe Experience Manager"
tags: aem,bruteforce,misconfig
tags: aem,brute-force,misconfig
http:
- method: GET

View File

@ -9,7 +9,7 @@ info:
metadata:
max-request: 100
shodan-query: http.title:"GitLab"
tags: gitlab,enum,misconfig,fuzz
tags: gitlab,enum,misconfig,brute-force
http:
- raw:

View File

@ -16,7 +16,7 @@ info:
cwe-id: CWE-441
metadata:
max-request: 25
tags: exposure,config,proxy,misconfig,fuzz
tags: exposure,config,proxy,misconfig,brute-force
http:
- raw:

View File

@ -16,7 +16,7 @@ info:
cwe-id: CWE-441
metadata:
max-request: 6
tags: exposure,config,proxy,misconfig,fuzz
tags: exposure,config,proxy,misconfig,brute-force
http:
- raw:

View File

@ -16,7 +16,7 @@ info:
cwe-id: CWE-441
metadata:
max-request: 8
tags: exposure,config,proxy,misconfig,fuzz
tags: exposure,config,proxy,misconfig,brute-force
http:
- raw:

View File

@ -13,7 +13,7 @@ info:
verified: true
max-request: 50
shodan-query: Graylog
tags: tech,graylog,api,swagger,fuzz
tags: tech,graylog,api,swagger,brute-force
http:
- method: GET

View File

@ -14,7 +14,7 @@ info:
shodan-query: title:"通达OA"
fofa-query: title="通达OA"
zoomeye-query: app:"通达OA"
tags: tongda,auth-bypass,fuzz
tags: tongda,auth-bypass,brute-force
http:
- raw:

View File

@ -10,7 +10,7 @@ info:
- https://www.acunetix.com/vulnerabilities/web/wordpress-xml-rpc-authentication-brute-force/
metadata:
max-request: 276
tags: wordpress,php,xmlrpc,fuzz
tags: wordpress,php,xmlrpc,brute-force
http:
- raw:

View File

@ -29,7 +29,7 @@ info:
verified: true
vendor: vmware
product: aria_operations_for_networks
tags: js,packetstorm,cve,cve2019,vmware,aria,rce,fuzz,vrealize
tags: js,packetstorm,cve,cve2019,vmware,aria,rce,brute-force,vrealize
variables:
keysDir: "helpers/payloads/cve-2023-34039-keys" # load all private keys from this directory

View File

@ -7,7 +7,7 @@ info:
metadata:
max-request: 223
shodan-query: port:1433
tags: js,ssh,default-login,network,fuzz
tags: js,ssh,default-login,network,brute-force
javascript:
- pre-condition: |

View File

@ -12,7 +12,7 @@ info:
cwe-id: CWE-200
metadata:
max-request: 1
tags: network,mysql,bruteforce,db,misconfig
tags: network,mysql,brute-force,db,misconfig
tcp:
- host:

View File

@ -11,7 +11,7 @@ info:
cwe-id: CWE-200
metadata:
max-request: 1
tags: network,tidb,bruteforce,db,misconfig
tags: network,tidb,brute-force,db,misconfig
tcp:
- host: