Merge pull request #5963 from projectdiscovery/ricardomaia-glpi-detect

Ricardomaia glpi detect

exposed-panels/glpi-authentication.yaml

@@ -1,25 +0,0 @@
-id: glpi-authentication
-
-info:
-  name: GLPI - Authentication
-  author: dhiyaneshDK
-  severity: info
-  metadata:
-    shodan-query: http.title:"GLPI - Authentication"
-  tags: panel,auth,glpi
-
-requests:
-  - method: GET
-    path:
-      - '{{BaseURL}}'
-
-    matchers-condition: and
-    matchers:
-      - type: word
-        words:
-          - '<title>GLPI - Authentication</title>'
-          - 'title="Powered by Teclib and contributors" class="copyright">GLPI Copyright'
-
-      - type: status
-        status:
-          - 200

exposed-panels/glpi-login.yaml

@@ -1,22 +0,0 @@
-id: glpi-login
-
-info:
-  name: GLPI - Аутентификация
-  author: dhiyaneshDk
-  severity: info
-  reference:
-    - https://www.exploit-db.com/ghdb/7002
-  tags: panel,glpi,edb
-
-requests:
-  - method: GET
-    path:
-      - '{{BaseURL}}'
-      - '{{BaseURL}}/glpi/'
-
-    matchers:
-      - type: word
-        words:
-          - '<title>GLPI - Аутентификация</title>'
-          - 'GLPI Copyright'
-        condition: and

exposed-panels/glpi-panel.yaml

@@ -1,10 +1,14 @@
-id: glpi-panel
+id: glpi-project_glpi
 
 info:
-  name: GLPI Panel Login
-  author: dogasantos,daffainfo
+  name: GLPI
+  author: dogasantos,daffainfo,ricardomaia,dhiyaneshDk
   severity: info
+  reference:
+    - https://glpi-project.org/
+    - https://www.exploit-db.com/ghdb/7002
   metadata:
+    verified: true
     shodan-query: http.title:"GLPI"
   tags: panel,glpi
 
@@ -12,26 +16,26 @@ requests:
   - method: GET
     path:
       - "{{BaseURL}}"
+      - "{{BaseURL}}/CHANGELOG.md"
       - "{{BaseURL}}/glpi/"
-      - "{{BaseURL}}/glpi2/"
 
-    stop-at-first-match: true
-    matchers-condition: and
+    redirects: true
+    max-redirects: 2
+    stop-at-first-match: false
     matchers:
       - type: word
+        case-insensitive: true
         words:
-          - "CFG_GLPI"
-          - "_glpi_csrf_token"
-          - "GLPI Copyright"
+          - "GLPI"
+          - "glpi-project.org"
         condition: and
-
-      - type: status
-        status:
-          - 200
-
     extractors:
       - type: regex
+        name: version
         part: body
         group: 1
         regex:
-          - 'base.min.js?v=(.*)'
+          - '(?i)base\.min\.js\?v=([\d.|\d]+)">'
+          - '(?i)jquery\.min\.js\?v=([\d.|\d]+)">'
+          - '(?i)# GLPI changes\n\n.*\n.*\n.*\n##\s\[(\d+\.\d+|\d+\.\d+\.\d+)\]'
+          - '(?i)GLPI.*?([\d.|\d]+).copyright'

technologies/glpi-project-detect.yaml

@@ -1,39 +0,0 @@
-id: glpi-project-detect
-
-info:
-  name: GLPI Detect
-  author: ricardomaia
-  severity: info
-  reference:
-    - https://glpi-project.org/
-  metadata:
-    verified: true
-    shodan-query: title:"glpi"
-  tags: tech,glpi
-
-requests:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
-      - "{{BaseURL}}/CHANGELOG.md"
-
-    stop-at-first-match: true
-    matchers-condition: or
-    matchers:
-      - type: word
-        words:
-          - "GLPI changes"
-          - "glpi-project.org"
-        condition: and
-
-      - type: regex
-        regex:
-          - '(GLPI.*[C|c]opyright.*(|Teclib))'
-
-    extractors:
-      - type: regex
-        name: version
-        part: body
-        group: 1
-        regex:
-          - '# GLPI changes\n\n.*\n.*\n.*\n##\s\[(\d+\.\d+|\d+\.\d+\.\d+)\]'