daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update fortios-panel.yaml

patch-1
Prince Chaddha 2022-11-04 15:50:51 +05:30 committed by GitHub
parent ec53ac2a33
commit 853044115d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 15 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
exposed-panels/fortinet/fortios-panel.yaml
View File

@ -1,8 +1,8 @@
id: fortios-panel
info:
name: fortios-panel
author: canberbamber
name: Fortios Exposed Panel
author: canberbamber,Jna1
severity: info
description: |
admin portal of fortios devices
@ -18,29 +18,20 @@ requests:
- raw:
- |
GET /api/v2/cmdb/system/admin/admin HTTP/1.1
Host: {{Hostname}}:{{port}}
Content-Type: application/x-www-form-urlencoded
attack: clusterbomb
payloads:
port:
- 443
- 8443
- 10443
- 80
- 4443
- 9443
- 6443
- 7443
Host: {{Hostname}}
matchers-condition: and
matchers:
- type: word
part: body
words:
- '/remote/login'
- type: word
part: header
words:
- 'Server: xxxxxxxx-xxxxx'
- type: status
status:
- 403