From db1113e37fd0ceb688137a3b707cdb8366392578 Mon Sep 17 00:00:00 2001 From: pussycat0x <65701233+pussycat0x@users.noreply.github.com> Date: Fri, 18 Nov 2022 13:42:08 +0530 Subject: [PATCH 1/3] Add files via upload --- .../haproxy-exporter-metrics.yaml | 28 +++++++++++++++++++ 1 file changed, 28 insertions(+) create mode 100644 misconfiguration/haproxy-exporter-metrics.yaml diff --git a/misconfiguration/haproxy-exporter-metrics.yaml b/misconfiguration/haproxy-exporter-metrics.yaml new file mode 100644 index 0000000000..115f1a6cb8 --- /dev/null +++ b/misconfiguration/haproxy-exporter-metrics.yaml @@ -0,0 +1,28 @@ +id: haproxy-exporter-metrics + +info: + name: Detect Haproxy Exporter + author: pussycat0x + severity: low + metadata: + verified: true + shodan-query: title:"haproxy exporter" + tags: haproxy,exposure,debug + +requests: + - method: GET + path: + - "{{BaseURL}}/metrics" + + matchers-condition: and + matchers: + - type: word + part: body + words: + - "haproxy_exporter" + - "haproxy_up" + condition: and + + - type: status + status: + - 200 \ No newline at end of file From 5c75406de1b1a59968e88ef65deb65fa4b655ffc Mon Sep 17 00:00:00 2001 From: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com> Date: Fri, 18 Nov 2022 14:05:50 +0530 Subject: [PATCH 2/3] Update haproxy-exporter-metrics.yaml --- misconfiguration/haproxy-exporter-metrics.yaml | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/misconfiguration/haproxy-exporter-metrics.yaml b/misconfiguration/haproxy-exporter-metrics.yaml index 115f1a6cb8..b089ab156f 100644 --- a/misconfiguration/haproxy-exporter-metrics.yaml +++ b/misconfiguration/haproxy-exporter-metrics.yaml @@ -23,6 +23,11 @@ requests: - "haproxy_up" condition: and + - type: word + part: header + words: + - text/plain + - type: status status: - - 200 \ No newline at end of file + - 200 From bad8d2b944e72d86014c237a98f26f1f900accf4 Mon Sep 17 00:00:00 2001 From: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com> Date: Fri, 18 Nov 2022 14:21:09 +0530 Subject: [PATCH 3/3] Update haproxy-exporter-metrics.yaml --- misconfiguration/haproxy-exporter-metrics.yaml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/misconfiguration/haproxy-exporter-metrics.yaml b/misconfiguration/haproxy-exporter-metrics.yaml index b089ab156f..71c0970c54 100644 --- a/misconfiguration/haproxy-exporter-metrics.yaml +++ b/misconfiguration/haproxy-exporter-metrics.yaml @@ -19,14 +19,14 @@ requests: - type: word part: body words: - - "haproxy_exporter" - - "haproxy_up" - condition: and + - "HELP haproxy_" - type: word - part: header + part: body words: - - text/plain + - "haproxy_exporter" + - "haproxy_backend" + condition: or - type: status status: