Create mongod-exposure.yaml

main
Dhiyaneshwaran 2024-07-18 13:44:37 +05:30 committed by GitHub
parent a4d812c689
commit 8ab7cf18f2
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 30 additions and 0 deletions

View File

@ -0,0 +1,30 @@
id: mongod-exposure
info:
name: MongoD Server - Exposure
author: DhiyaneshDk
severity: medium
metadata:
verified: true
max-request: 1
shodan-query: html:"mongod"
tags: mongod,exposure,info-leak
http:
- raw:
- |
GET / HTTP/1.1
Host: {{Hostname}}
matchers-condition: and
matchers:
- type: word
part: body
words:
- "<title>mongod"
- "List all commands"
condition: and
- type: status
status:
- 200