Merge pull request #3451 from pikpikcu/patch-312

Added apache-apisix-detect
patch-1
Prince Chaddha 2021-12-31 08:39:59 +05:30 committed by GitHub
commit 6db74541b8
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with 28 additions and 3 deletions

View File

@ -0,0 +1,25 @@
id: apache-apisix-panel
info:
name: Apache APISIX Panel detect
author: pikpikcu
severity: info
metadata:
fofa-query: title="Apache APISIX Dashboard"
tags: apache,apisix,panel
requests:
- method: GET
path:
- "{{BaseURL}}/user/login?redirect=%2F"
matchers-condition: and
matchers:
- type: word
part: body
words:
- '<title>Apache APISIX Dashboard</title>'
- type: status
status:
- 200

View File

@ -4,7 +4,7 @@ info:
name: tomcat manager disclosure
author: Ahmed Sherif,geeknik
severity: info
tags: panel,tomcat
tags: panel,tomcat,apache
requests:
- method: GET

View File

@ -5,7 +5,7 @@ info:
author: organiccrap
severity: info
reference: https://i.blackhat.com/us-18/Wed-August-8/us-18-Orange-Tsai-Breaking-Parser-Logic-Take-Your-Path-Normalization-Off-And-Pop-0days-Out-2.pdf
tags: panel,tomcat
tags: panel,tomcat,apache
requests:
- method: GET
@ -25,4 +25,4 @@ requests:
negative: true
status:
- 403
- 401
- 401