replaced fuzz tag to brute-force
parent
521a044901
commit
652903d374
|
@ -9,7 +9,7 @@ info:
|
|||
metadata:
|
||||
verified: true
|
||||
max-request: 1
|
||||
tags: cloud,cloud-enum,azure,fuzz,enum
|
||||
tags: cloud,cloud-enum,azure,brute-force,enum
|
||||
|
||||
self-contained: true
|
||||
|
||||
|
|
|
@ -20,7 +20,7 @@ type:
|
|||
exclude-tags:
|
||||
- tech
|
||||
- dos
|
||||
- fuzz
|
||||
- brute-force
|
||||
- creds-stuffing
|
||||
- token-spray
|
||||
- osint
|
|
@ -15,5 +15,5 @@ type:
|
|||
|
||||
exclude-tags:
|
||||
- dos
|
||||
- fuzz
|
||||
- brute-force
|
||||
- osint
|
|
@ -20,7 +20,7 @@ type:
|
|||
exclude-tags:
|
||||
- tech
|
||||
- dos
|
||||
- fuzz
|
||||
- brute-force
|
||||
- creds-stuffing
|
||||
- token-spray
|
||||
- osint
|
||||
|
|
|
@ -28,7 +28,7 @@ info:
|
|||
max-request: 65
|
||||
vendor: embedthis
|
||||
product: goahead
|
||||
tags: cve,cve2017,rce,goahead,fuzz,kev,vulhub,embedthis
|
||||
tags: cve,cve2017,rce,goahead,brute-force,kev,vulhub,embedthis
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -27,7 +27,7 @@ info:
|
|||
max-request: 100
|
||||
vendor: zabbix
|
||||
product: zabbix
|
||||
tags: cve2019,cve,fuzz,auth-bypass,login,edb,zabbix
|
||||
tags: cve2019,cve,brute-force,auth-bypass,login,edb,zabbix
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -28,7 +28,7 @@ info:
|
|||
vendor: automattic
|
||||
product: sensei_lms
|
||||
framework: wordpress
|
||||
tags: cve,cve2022,wp,disclosure,wpscan,sensei-lms,fuzz,hackerone,wordpress,wp-plugin,automattic
|
||||
tags: cve,cve2022,wp,disclosure,wpscan,sensei-lms,brute-force,hackerone,wordpress,wp-plugin,automattic
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
@ -28,7 +28,7 @@ info:
|
|||
vendor: citrix
|
||||
product: sharefile_storage_zones_controller
|
||||
shodan-query: title:"ShareFile Storage Server"
|
||||
tags: cve2023,cve,sharefile,rce,intrusive,fileupload,fuzz,kev,citrix
|
||||
tags: cve2023,cve,sharefile,rce,intrusive,fileupload,brute-force,kev,citrix
|
||||
variables:
|
||||
fileName: '{{rand_base(8)}}'
|
||||
|
||||
|
|
|
@ -16,7 +16,7 @@ info:
|
|||
verified: true
|
||||
max-request: 200
|
||||
shodan-query: title:"Oracle PeopleSoft Sign-in"
|
||||
tags: default-login,peoplesoft,oracle,fuzz
|
||||
tags: default-login,peoplesoft,oracle,brute-force
|
||||
|
||||
http:
|
||||
- method: POST
|
||||
|
|
|
@ -17,7 +17,7 @@ info:
|
|||
# Is generally handy if you find SQL creds
|
||||
metadata:
|
||||
max-request: 741
|
||||
tags: panel,fuzz,adminer,login,sqli
|
||||
tags: panel,brute-force,adminer,login,sqli
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -7,7 +7,7 @@ info:
|
|||
description: PHP Source File is disclosed to external users.
|
||||
metadata:
|
||||
max-request: 1512
|
||||
tags: exposure,backup,php,disclosure,fuzz
|
||||
tags: exposure,backup,php,disclosure,brute-force
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
@ -9,7 +9,7 @@ info:
|
|||
- https://portswigger.net/web-security/web-cache-poisoning
|
||||
metadata:
|
||||
max-request: 5834
|
||||
tags: fuzzing,fuzz,cache
|
||||
tags: fuzzing,brute-force,cache
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -11,7 +11,7 @@ info:
|
|||
cwe-id: CWE-77
|
||||
metadata:
|
||||
max-request: 7650
|
||||
tags: fuzzing,fuzz,rce
|
||||
tags: fuzzing,brute-force,rce
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -15,7 +15,7 @@ info:
|
|||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 4
|
||||
tags: fuzzing,fuzz,edb
|
||||
tags: brute,edb
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -11,7 +11,7 @@ info:
|
|||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 22
|
||||
tags: fuzzing,linux,lfi,fuzz
|
||||
tags: fuzzing,linux,lfi,brute-force
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
@ -13,7 +13,7 @@ info:
|
|||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 341
|
||||
tags: fuzzing,fuzz,mdb,asp
|
||||
tags: brute,mdb,asp
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -6,7 +6,7 @@ info:
|
|||
severity: info
|
||||
metadata:
|
||||
max-request: 639
|
||||
tags: fuzzing,fuzz,prestashop
|
||||
tags: fuzzing,brute-force,prestashop
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -10,7 +10,7 @@ info:
|
|||
- https://twitter.com/ImoJOnDz/status/1649089777629827072
|
||||
metadata:
|
||||
max-request: 9
|
||||
tags: fuzzing,ssrf,proxy,oast,fuzz
|
||||
tags: ssrf,proxy,oast,brute-force
|
||||
|
||||
http:
|
||||
- payloads:
|
||||
|
|
|
@ -8,7 +8,7 @@ info:
|
|||
- https://github.com/dievus/geeMailUserFinder
|
||||
metadata:
|
||||
max-request: 1
|
||||
tags: fuzzing,fuzz,gmail
|
||||
tags: brute-force,gmail
|
||||
|
||||
self-contained: true
|
||||
|
||||
|
|
|
@ -11,7 +11,7 @@ info:
|
|||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 58
|
||||
tags: fuzzing,waf,tech,fuzz
|
||||
tags: fuzzing,waf,tech,brute-force
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -6,7 +6,7 @@ info:
|
|||
severity: info
|
||||
metadata:
|
||||
max-request: 98135
|
||||
tags: fuzzing,fuzz,wordpress
|
||||
tags: fuzzing,brute-force,wordpress
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -6,7 +6,7 @@ info:
|
|||
severity: info
|
||||
metadata:
|
||||
max-request: 24434
|
||||
tags: fuzzing,fuzz,wordpress
|
||||
tags: brute,wordpress,wp
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -14,7 +14,7 @@ info:
|
|||
cwe-id: CWE-1391
|
||||
metadata:
|
||||
max-request: 276
|
||||
tags: fuzzing,wordpress,default-login,fuzz
|
||||
tags: wordpress,default-login,brute-force
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -7,7 +7,7 @@ info:
|
|||
description: Template to detect 403 forbidden endpoint bypass behind Nginx/Apache proxy & load balancers, based on X-Forwarded-For header.
|
||||
metadata:
|
||||
max-request: 3
|
||||
tags: fuzzing,fuzz
|
||||
tags: fuzzing,brute-force
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -16,7 +16,7 @@ info:
|
|||
metadata:
|
||||
verified: true
|
||||
max-request: 85
|
||||
tags: misc,defacement,spam,hacktivism,fuzz
|
||||
tags: misc,defacement,spam,hacktivism,brute-force
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
@ -8,7 +8,7 @@ info:
|
|||
- https://medium.com/swlh/internal-information-disclosure-using-hidden-ntlm-authentication-18de17675666
|
||||
metadata:
|
||||
max-request: 47
|
||||
tags: miscellaneous,misc,fuzz,windows
|
||||
tags: miscellaneous,misc,brute-force,windows
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -8,7 +8,7 @@ info:
|
|||
metadata:
|
||||
max-request: 1
|
||||
shodan-query: http.component:"Adobe Experience Manager"
|
||||
tags: aem,bruteforce,misconfig
|
||||
tags: aem,brute-force,misconfig
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
@ -9,7 +9,7 @@ info:
|
|||
metadata:
|
||||
max-request: 100
|
||||
shodan-query: http.title:"GitLab"
|
||||
tags: gitlab,enum,misconfig,fuzz
|
||||
tags: gitlab,enum,misconfig,brute-force
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -16,7 +16,7 @@ info:
|
|||
cwe-id: CWE-441
|
||||
metadata:
|
||||
max-request: 25
|
||||
tags: exposure,config,proxy,misconfig,fuzz
|
||||
tags: exposure,config,proxy,misconfig,brute-force
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -16,7 +16,7 @@ info:
|
|||
cwe-id: CWE-441
|
||||
metadata:
|
||||
max-request: 6
|
||||
tags: exposure,config,proxy,misconfig,fuzz
|
||||
tags: exposure,config,proxy,misconfig,brute-force
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -16,7 +16,7 @@ info:
|
|||
cwe-id: CWE-441
|
||||
metadata:
|
||||
max-request: 8
|
||||
tags: exposure,config,proxy,misconfig,fuzz
|
||||
tags: exposure,config,proxy,misconfig,brute-force
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -13,7 +13,7 @@ info:
|
|||
verified: true
|
||||
max-request: 50
|
||||
shodan-query: Graylog
|
||||
tags: tech,graylog,api,swagger,fuzz
|
||||
tags: tech,graylog,api,swagger,brute-force
|
||||
|
||||
http:
|
||||
- method: GET
|
||||
|
|
|
@ -14,7 +14,7 @@ info:
|
|||
shodan-query: title:"通达OA"
|
||||
fofa-query: title="通达OA"
|
||||
zoomeye-query: app:"通达OA"
|
||||
tags: tongda,auth-bypass,fuzz
|
||||
tags: tongda,auth-bypass,brute-force
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -10,7 +10,7 @@ info:
|
|||
- https://www.acunetix.com/vulnerabilities/web/wordpress-xml-rpc-authentication-brute-force/
|
||||
metadata:
|
||||
max-request: 276
|
||||
tags: wordpress,php,xmlrpc,fuzz
|
||||
tags: wordpress,php,xmlrpc,brute-force
|
||||
|
||||
http:
|
||||
- raw:
|
||||
|
|
|
@ -29,7 +29,7 @@ info:
|
|||
verified: true
|
||||
vendor: vmware
|
||||
product: aria_operations_for_networks
|
||||
tags: js,packetstorm,cve,cve2019,vmware,aria,rce,fuzz,vrealize
|
||||
tags: js,packetstorm,cve,cve2019,vmware,aria,rce,brute-force,vrealize
|
||||
variables:
|
||||
keysDir: "helpers/payloads/cve-2023-34039-keys" # load all private keys from this directory
|
||||
|
||||
|
|
|
@ -7,7 +7,7 @@ info:
|
|||
metadata:
|
||||
max-request: 223
|
||||
shodan-query: port:1433
|
||||
tags: js,ssh,default-login,network,fuzz
|
||||
tags: js,ssh,default-login,network,brute-force
|
||||
|
||||
javascript:
|
||||
- pre-condition: |
|
||||
|
|
|
@ -12,7 +12,7 @@ info:
|
|||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 1
|
||||
tags: network,mysql,bruteforce,db,misconfig
|
||||
tags: network,mysql,brute-force,db,misconfig
|
||||
|
||||
tcp:
|
||||
- host:
|
||||
|
|
|
@ -11,7 +11,7 @@ info:
|
|||
cwe-id: CWE-200
|
||||
metadata:
|
||||
max-request: 1
|
||||
tags: network,tidb,bruteforce,db,misconfig
|
||||
tags: network,tidb,brute-force,db,misconfig
|
||||
|
||||
tcp:
|
||||
- host:
|
||||
|
|
Loading…
Reference in New Issue