optimizely admin panel detection

exposed-panels/optimizely-login.yaml

@@ -0,0 +1,30 @@
+id: optimizely-login
+info:
+  name: Optimizely Admin Panel
+  author: William Söderberg @ WithSecure
+  severity: info
+  description: Optimizely CMS was detected. Optimizely CMS was formerly known as Episerver.
+  reference: https://docs.developers.optimizely.com/content-cloud/v12.0.0-content-cloud/docs/changing-edit-and-admin-view-urls
+  metadata:
+    google-query: intext:"When you log in, cookies will be used"
+  tags: panel,optimizely,episerver
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/episerver/cms"
+    redirects: true
+    max-redirects: 1
+    matchers:
+      - type: status
+        status: 
+          - 302
+      - type: word
+        words: 
+          - "Util/Login?ReturnUrl=%2Fepiserver%2Fcms"
+        part: header
+    extractors:
+      - type: regex 
+        part: body  
+        regex:
+          - "/EPiServer/Shell/(\\d+\\.\\d+\\.\\d+)/"
+        group: 1