daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Run dos2unix against all templates

patch-1
sullo 2023-03-27 13:56:52 -04:00
parent 26eacf9b75
commit 96d0b8f950
21 changed files with 1456 additions and 1456 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

54
iot/carel-plantvisor-panel.yaml
View File

@ -1,27 +1,27 @@
id: carel-plantvisor-panel id: carel-plantvisor-panel
info: info:
name: CAREL Pl@ntVisor Panel name: CAREL Pl@ntVisor Panel
author: Hardik-Solanki author: Hardik-Solanki
severity: info severity: info
metadata: metadata:
shodan-query: title:"CAREL Pl@ntVisor" shodan-query: title:"CAREL Pl@ntVisor"
tags: panels,scada,iot,carel tags: panels,scada,iot,carel
requests: requests:
- method: GET - method: GET
path: path:
- '{{BaseURL}}' - '{{BaseURL}}'
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: word - type: word
part: body part: body
words: words:
- 'CAREL Pl@ntVisor' - 'CAREL Pl@ntVisor'
- 'alt="CAREL' - 'alt="CAREL'
condition: or condition: or
- type: status - type: status
status: status:
- 200 - 200

56
iot/raspberry-shake-config.yaml
View File

@ -1,28 +1,28 @@
id: raspberry-shake-config id: raspberry-shake-config
info: info:
name: Raspberry Shake Config Detection name: Raspberry Shake Config Detection
author: pussycat0x author: pussycat0x
severity: medium severity: medium
description: | description: |
The Shake Board digitizer receives, processes, and interprets the sensor data in real-time, allowing for the Raspberry Pi computer to export the data for easy access. The data output can be displayed and analyzed using our own comprehensive set of web tools or any standard seismological software. The Shake Board digitizer receives, processes, and interprets the sensor data in real-time, allowing for the Raspberry Pi computer to export the data for easy access. The data output can be displayed and analyzed using our own comprehensive set of web tools or any standard seismological software.
metadata: metadata:
verified: true verified: true
shodan-query: title:"Raspberry Shake Config" shodan-query: title:"Raspberry Shake Config"
tags: misconfig,unauth,iot,raspberry tags: misconfig,unauth,iot,raspberry
requests: requests:
- method: GET - method: GET
path: path:
- "{{BaseURL}}" - "{{BaseURL}}"
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: word - type: word
part: body part: body
words: words:
- "Raspberry Shake Config" - "Raspberry Shake Config"
- type: status - type: status
status: status:
- 200 - 200

72
miscellaneous/sitemap-detect.yaml
View File

@ -1,36 +1,36 @@
id: sitemap-detect id: sitemap-detect
info: info:
name: Sitemap Detection name: Sitemap Detection
author: houdinis author: houdinis
severity: info severity: info
description: | description: |
A sitemap is a file where you provide information about the pages, videos, and other files on your site, and the relationships between them. A sitemap is a file where you provide information about the pages, videos, and other files on your site, and the relationships between them.
metadata: metadata:
verified: "true" verified: "true"
google-query: intext:"sitemap" filetype:txt,filetype:xml inurl:sitemap,inurl:"/sitemap.xsd" ext:xsd google-query: intext:"sitemap" filetype:txt,filetype:xml inurl:sitemap,inurl:"/sitemap.xsd" ext:xsd
tags: misc,generic,sitemap tags: misc,generic,sitemap
requests: requests:
- method: GET - method: GET
path: path:
- "{{BaseURL}}/sitemap.xml" - "{{BaseURL}}/sitemap.xml"
- "{{BaseURL}}/sitemap.xsl" - "{{BaseURL}}/sitemap.xsl"
- "{{BaseURL}}/sitemap.xsd" - "{{BaseURL}}/sitemap.xsd"
stop-at-first-match: true stop-at-first-match: true
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: word - type: word
words: words:
- "sitemap>" - "sitemap>"
case-insensitive: true case-insensitive: true
- type: word - type: word
part: header part: header
words: words:
- 'application/xml' - 'application/xml'
- type: status - type: status
status: status:
- 200 - 200

60
misconfiguration/unauth-kubecost.yaml
View File

@ -1,30 +1,30 @@
id: unauth-kubecost id: unauth-kubecost
info: info:
name: KubeCost - Unauthenticated Dashboard Exposure name: KubeCost - Unauthenticated Dashboard Exposure
author: pussycat0x author: pussycat0x
severity: medium severity: medium
reference: https://www.facebook.com/photo?fbid=470414125129112&set=pcb.470413798462478 reference: https://www.facebook.com/photo?fbid=470414125129112&set=pcb.470413798462478
metadata: metadata:
verified: true verified: true
shodan-query: title:kubecost shodan-query: title:kubecost
tags: misconfig,exposure,unauth,kubecost tags: misconfig,exposure,unauth,kubecost
requests: requests:
- method: GET - method: GET
path: path:
- '{{BaseURL}}/overview.html' - '{{BaseURL}}/overview.html'
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: word - type: word
words: words:
- '<title>Cluster Overview | Kubecost</title>' - '<title>Cluster Overview | Kubecost</title>'
- type: word - type: word
part: header part: header
words: words:
- text/html - text/html
- type: status - type: status
status: status:
- 200 - 200

62
network/detection/activemq-openwire-transport-detect.yaml
View File

@ -1,31 +1,31 @@
id: activemq-openwire-transport-detect id: activemq-openwire-transport-detect
info: info:
name: ActiveMQ OpenWire Transport Detection name: ActiveMQ OpenWire Transport Detection
author: pussycat0x author: pussycat0x
severity: info severity: info
description: | description: |
OpenWire is the native protocol that Apache ActiveMQ uses. It is designed for performance and size on the wire - sacrificing some ease of implementation with higher performance and reduced network bandwidth as a priority. OpenWire is the native protocol that Apache ActiveMQ uses. It is designed for performance and size on the wire - sacrificing some ease of implementation with higher performance and reduced network bandwidth as a priority.
metadata: metadata:
verified: true verified: true
shodan-query: 'product:"ActiveMQ OpenWire transport"' shodan-query: 'product:"ActiveMQ OpenWire transport"'
tags: network,activemq tags: network,activemq
network: network:
- inputs: - inputs:
- data: "VERSION" - data: "VERSION"
host: host:
- "{{Hostname}}" - "{{Hostname}}"
- "{{Host}}:61616" - "{{Host}}:61616"
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: word - type: word
words: words:
- "ActiveMQ" - "ActiveMQ"
extractors: extractors:
- type: regex - type: regex
regex: regex:
- "ProviderVersion...([0-9.]+)" - "ProviderVersion...([0-9.]+)"

54
network/detection/apache-activemq-detect.yaml
View File

@ -1,27 +1,27 @@
id: apache-activemq-detect id: apache-activemq-detect
info: info:
name: Apache ActiveMQ Detection name: Apache ActiveMQ Detection
author: pussycat0x author: pussycat0x
severity: info severity: info
description: | description: |
Apache ActiveMQ is an open source message broker written in Java together with a full Java Message Service client. It provides "Enterprise Features" which in this case means fostering the communication from more than one client or server. Apache ActiveMQ is an open source message broker written in Java together with a full Java Message Service client. It provides "Enterprise Features" which in this case means fostering the communication from more than one client or server.
metadata: metadata:
verified: true verified: true
shodan-query: 'product:"Apache ActiveMQ"' shodan-query: 'product:"Apache ActiveMQ"'
tags: network,activemq,oss tags: network,activemq,oss
network: network:
- inputs: - inputs:
- data: "HELP\n\n\u0000" - data: "HELP\n\n\u0000"
host: host:
- "{{Hostname}}" - "{{Hostname}}"
- "{{Host}}:61613" - "{{Host}}:61613"
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: word - type: word
words: words:
- "Unknown STOMP action" - "Unknown STOMP action"
- "norg.apache.activemq.transport.stomp" - "norg.apache.activemq.transport.stomp"

58
network/detection/clamav-detect.yaml
View File

@ -1,29 +1,29 @@
id: clamav-detect id: clamav-detect
info: info:
name: ClamAV Server Detect name: ClamAV Server Detect
author: pussycat0x author: pussycat0x
severity: info severity: info
description: | description: |
Clam AntiVirus is a free software, cross-platform antimalware toolkit able to detect many types of malware, including viruses. Clam AntiVirus is a free software, cross-platform antimalware toolkit able to detect many types of malware, including viruses.
metadata: metadata:
verified: true verified: true
shodan-query: 'port:3310 product:"ClamAV"' shodan-query: 'port:3310 product:"ClamAV"'
tags: network,clamav tags: network,clamav
network: network:
- inputs: - inputs:
- data: "VERSION" - data: "VERSION"
host: host:
- "{{Hostname}}" - "{{Hostname}}"
- "{{Host}}:3310" - "{{Host}}:3310"
matchers: matchers:
- type: regex - type: regex
regex: regex:
- 'ClamAV ([0-9.]+)' - 'ClamAV ([0-9.]+)'
extractors: extractors:
- type: regex - type: regex
regex: regex:
- "ClamAV ([0-9.]+)" - "ClamAV ([0-9.]+)"

74
network/detection/cql-native-transport.yaml
View File

@ -1,37 +1,37 @@
id: cql-native-transport id: cql-native-transport
info: info:
name: CQL Native Transport Detect name: CQL Native Transport Detect
author: pussycat0x author: pussycat0x
severity: info severity: info
description: | description: |
Native transport requests (NTR) are any requests made via the CQL Native Protocol. CQL Native Protocol is the way the Cassandra driver communicates with the server. Native transport requests (NTR) are any requests made via the CQL Native Protocol. CQL Native Protocol is the way the Cassandra driver communicates with the server.
metadata: metadata:
verified: true verified: true
shodan-query: "cassandra" shodan-query: "cassandra"
tags: network,cassandra,cql tags: network,cassandra,cql
network: network:
- inputs: - inputs:
- data: "/n" - data: "/n"
- data: "/n" - data: "/n"
- data: "/n" - data: "/n"
- data: "/n" - data: "/n"
- data: "/n" - data: "/n"
- data: "/n" - data: "/n"
- data: "/n" - data: "/n"
- data: "/n" - data: "/n"
host: host:
- "{{Hostname}}" - "{{Hostname}}"
- "{{Host}}:9042" - "{{Host}}:9042"
matchers: matchers:
- type: word - type: word
words: words:
- "valid or unsupported protocol" - "valid or unsupported protocol"
extractors: extractors:
- type: regex - type: regex
regex: regex:
- "protocol version: ([0-9]+)" - "protocol version: ([0-9]+)"

60
network/detection/esmtp-detect.yaml
View File

@ -1,30 +1,30 @@
id: esmtp-detect id: esmtp-detect
info: info:
name: ESMTP Detection name: ESMTP Detection
author: pussycat0x author: pussycat0x
severity: info severity: info
description: | description: |
ESMTP (Extended Simple Mail Transfer Protocol) specifies extensions to the original protocol for sending e-mail that supports graphics, audio and video files, and text in various national languages ESMTP (Extended Simple Mail Transfer Protocol) specifies extensions to the original protocol for sending e-mail that supports graphics, audio and video files, and text in various national languages
reference: reference:
- https://nmap.org/nsedoc/scripts/smtp-open-relay.html - https://nmap.org/nsedoc/scripts/smtp-open-relay.html
metadata: metadata:
verified: true verified: true
shodan-query: 'ESMTP' shodan-query: 'ESMTP'
tags: network,detect,smtp,mail tags: network,detect,smtp,mail
network: network:
- inputs: - inputs:
- data: "\n" - data: "\n"
host: host:
- "{{Hostname}}" - "{{Hostname}}"
- "{{Host}}:25" - "{{Host}}:25"
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: word - type: word
words: words:
- "ESMTP Postfix" - "ESMTP Postfix"
- "220" - "220"
condition: and condition: and

58
network/detection/gnu-inetutils-ftpd-detect.yaml
View File

@ -1,29 +1,29 @@
id: gnu-inetutils-ftpd-detect id: gnu-inetutils-ftpd-detect
info: info:
name: GNU Inetutils FTPd Detect name: GNU Inetutils FTPd Detect
author: pussycat0x author: pussycat0x
severity: info severity: info
description: | description: |
The File Transfer Protocol (FTP) is a standard network protocol used to transfer computer files between a client and server on a computer network. The File Transfer Protocol (FTP) is a standard network protocol used to transfer computer files between a client and server on a computer network.
metadata: metadata:
verified: true verified: true
shodan-query: 'product:"GNU Inetutils FTPd"' shodan-query: 'product:"GNU Inetutils FTPd"'
tags: network,ftp,smartgateway,gnu,inetutils tags: network,ftp,smartgateway,gnu,inetutils
network: network:
- inputs: - inputs:
- data: "\n" - data: "\n"
host: host:
- "{{Hostname}}" - "{{Hostname}}"
- "{{Host}}:21" - "{{Host}}:21"
matchers: matchers:
- type: word - type: word
words: words:
- "SmartGateway FTP server" - "SmartGateway FTP server"
extractors: extractors:
- type: regex - type: regex
regex: regex:
- "GNU inetutils ([0-9.]+)" - "GNU inetutils ([0-9.]+)"

56
network/detection/imap-detect.yaml
View File

@ -1,28 +1,28 @@
id: imap-detect id: imap-detect
info: info:
name: Imap Detection name: Imap Detection
author: pussycat0x author: pussycat0x
severity: info severity: info
description: | description: |
IMAP is an application-layer protocol used by email clients to retrieve messages from a mail server. It was designed to manage multiple email clients, therefore clients generally leave messages on the server until the user explicitly deletes them. IMAP is an application-layer protocol used by email clients to retrieve messages from a mail server. It was designed to manage multiple email clients, therefore clients generally leave messages on the server until the user explicitly deletes them.
metadata: metadata:
verified: true verified: true
shodan-query: 'imap' shodan-query: 'imap'
tags: network,detect,imap,mail tags: network,detect,imap,mail
network: network:
- inputs: - inputs:
- data: "\n" - data: "\n"
host: host:
- "{{Hostname}}" - "{{Hostname}}"
- "{{Host}}:143" - "{{Host}}:143"
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: word - type: word
words: words:
- "OK " - "OK "
- "IMAP4rev1" - "IMAP4rev1"
condition: and condition: and

50
network/detection/microsoft-ftp-service.yaml
View File

@ -1,25 +1,25 @@
id: microsoft-ftp-service id: microsoft-ftp-service
info: info:
name: Microsoft FTP Service Detect name: Microsoft FTP Service Detect
author: pussycat0x author: pussycat0x
severity: info severity: info
description: | description: |
The File Transfer Protocol (FTP) is a standard network protocol used to transfer computer files between a client and server on a computer network. The File Transfer Protocol (FTP) is a standard network protocol used to transfer computer files between a client and server on a computer network.
metadata: metadata:
verified: true verified: true
shodan-query: "Microsoft FTP Service" shodan-query: "Microsoft FTP Service"
tags: network,ftp,microsoft tags: network,ftp,microsoft
network: network:
- inputs: - inputs:
- data: "\n" - data: "\n"
host: host:
- "{{Hostname}}" - "{{Hostname}}"
- "{{Host}}:21" - "{{Host}}:21"
matchers: matchers:
- type: word - type: word
words: words:
- "Microsoft FTP Service" - "Microsoft FTP Service"

60
network/detection/mikrotik-ftp-server-detect.yaml
View File

@ -1,30 +1,30 @@
id: mikrotik-ftp-server-detect id: mikrotik-ftp-server-detect
info: info:
name: MikroTik FTP server Detect name: MikroTik FTP server Detect
author: pussycat0x author: pussycat0x
severity: info severity: info
description: | description: |
The File Transfer Protocol (FTP) is a standard network protocol used to transfer computer files between a client and server on a computer network. The File Transfer Protocol (FTP) is a standard network protocol used to transfer computer files between a client and server on a computer network.
metadata: metadata:
verified: true verified: true
shodan-query: 'product:"MikroTik router ftpd"' shodan-query: 'product:"MikroTik router ftpd"'
tags: network,ftp,mikrotik,router tags: network,ftp,mikrotik,router
network: network:
- inputs: - inputs:
- data: "\n" - data: "\n"
host: host:
- "{{Hostname}}" - "{{Hostname}}"
- "{{Host}}:21" - "{{Host}}:21"
matchers: matchers:
- type: word - type: word
part: body part: body
words: words:
- "MikroTik FTP" - "MikroTik FTP"
extractors: extractors:
- type: regex - type: regex
regex: regex:
- "MikroTik ([0-9.]+)" - "MikroTik ([0-9.]+)"

58
network/detection/proftpd-server-detect.yaml
View File

@ -1,29 +1,29 @@
id: proftpd-server-detect id: proftpd-server-detect
info: info:
name: ProFTPD Server Detect name: ProFTPD Server Detect
author: pussycat0x author: pussycat0x
severity: info severity: info
description: | description: |
The File Transfer Protocol (FTP) is a standard network protocol used to transfer computer files between a client and server on a computer network. The File Transfer Protocol (FTP) is a standard network protocol used to transfer computer files between a client and server on a computer network.
metadata: metadata:
verified: true verified: true
shodan-query: 'product:"ProFTPD"' shodan-query: 'product:"ProFTPD"'
tags: network,ftp,proftpd tags: network,ftp,proftpd
network: network:
- inputs: - inputs:
- data: "\n" - data: "\n"
host: host:
- "{{Hostname}}" - "{{Hostname}}"
- "{{Host}}:21" - "{{Host}}:21"
matchers: matchers:
- type: word - type: word
words: words:
- "ProFTPD Server" - "ProFTPD Server"
extractors: extractors:
- type: regex - type: regex
regex: regex:
- "ProFTPD ([0-9.a-z]+) Server" - "ProFTPD ([0-9.a-z]+) Server"

60
network/detection/rabbitmq-detect.yaml
View File

@ -1,30 +1,30 @@
id: rabbitmq-detect id: rabbitmq-detect
info: info:
name: RabbitMQ Detection name: RabbitMQ Detection
author: pussycat0x author: pussycat0x
severity: info severity: info
description: | description: |
RabbitMQ is an open-source message-broker software that originally implemented the Advanced Message Queuing Protocol and has since been extended with a plug-in architecture to support Streaming Text Oriented Messaging Protocol, MQ Telemetry Transport, and other protocols. RabbitMQ is an open-source message-broker software that originally implemented the Advanced Message Queuing Protocol and has since been extended with a plug-in architecture to support Streaming Text Oriented Messaging Protocol, MQ Telemetry Transport, and other protocols.
reference: reference:
- https://nmap.org/nsedoc/scripts/amqp-info.html - https://nmap.org/nsedoc/scripts/amqp-info.html
metadata: metadata:
verified: true verified: true
shodan-query: product:"RabbitMQ" shodan-query: product:"RabbitMQ"
tags: network,rabbitmq,oss tags: network,rabbitmq,oss
network: network:
- inputs: - inputs:
- data: "AMQP\u0000\u0000\t\u0001" - data: "AMQP\u0000\u0000\t\u0001"
host: host:
- "{{Hostname}}" - "{{Hostname}}"
- "{{Host}}:5672" - "{{Host}}:5672"
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: word - type: word
words: words:
- "publisher_confirmst" - "publisher_confirmst"
- "RabbitMQ" - "RabbitMQ"
condition: and condition: and

62
network/detection/riak-detect.yaml
View File

@ -1,31 +1,31 @@
id: riak-detect id: riak-detect
info: info:
name: Riak Detection name: Riak Detection
author: pussycat0x author: pussycat0x
severity: info severity: info
description: Riak is a distributed NoSQL key-value data store that offers high availability, fault tolerance, operational simplicity, and scalability. description: Riak is a distributed NoSQL key-value data store that offers high availability, fault tolerance, operational simplicity, and scalability.
metadata: metadata:
verified: true verified: true
shodan-query: product:"Riak" shodan-query: product:"Riak"
tags: network,oss tags: network,oss
network: network:
- inputs: - inputs:
- data: 0000000107 - data: 0000000107
type: hex type: hex
host: host:
- "{{Hostname}}" - "{{Hostname}}"
- "{{Host}}:8087" - "{{Host}}:8087"
read-size: 2048 read-size: 2048
matchers: matchers:
- type: word - type: word
words: words:
- "riak" - "riak"
extractors: extractors:
- type: regex - type: regex
regex: regex:
- "riak@([0-9.]+)..([0-9.]+([a-z]+[0-9]))" - "riak@([0-9.]+)..([0-9.]+([a-z]+[0-9]))"

60
network/detection/sshd-dropbear-detect.yaml
View File

@ -1,30 +1,30 @@
id: sshd-dropbear-detect id: sshd-dropbear-detect
info: info:
name: Dropbear sshd Detection name: Dropbear sshd Detection
author: pussycat0x author: pussycat0x
severity: info severity: info
description: | description: |
Dropbear is a software package written by Matt Johnston that provides a Secure Shell-compatible server and client. It is designed as a replacement for standard OpenSSH for environments with low memory and processor resources, such as embedded systems Dropbear is a software package written by Matt Johnston that provides a Secure Shell-compatible server and client. It is designed as a replacement for standard OpenSSH for environments with low memory and processor resources, such as embedded systems
metadata: metadata:
verified: true verified: true
shodan-query: 'product:"Dropbear sshd"' shodan-query: 'product:"Dropbear sshd"'
tags: network,ssh,dropbear tags: network,ssh,dropbear
network: network:
- inputs: - inputs:
- data: "\n" - data: "\n"
host: host:
- "{{Hostname}}" - "{{Hostname}}"
- "{{Host}}:22" - "{{Host}}:22"
matchers: matchers:
- type: word - type: word
words: words:
- "dropbear" - "dropbear"
extractors: extractors:
- type: regex - type: regex
regex: regex:
- "SSH-([0-9.]+)-dropbear_([0-9.]+)" - "SSH-([0-9.]+)-dropbear_([0-9.]+)"

64
network/detection/vmware-authentication-daemon-detect.yaml
View File

@ -1,32 +1,32 @@
id: vmware-authentication-daemon id: vmware-authentication-daemon
info: info:
name: VMware Authentication Daemon Detection name: VMware Authentication Daemon Detection
author: pussycat0x author: pussycat0x
severity: info severity: info
description: | description: |
vmauthd is the VMWare authentication daemon that is included with many VMWare products, including ESX(i), and Workstation. vmauthd is the VMWare authentication daemon that is included with many VMWare products, including ESX(i), and Workstation.
metadata: metadata:
verified: true verified: true
shodan-query: 'product:"VMware Authentication Daemon"' shodan-query: 'product:"VMware Authentication Daemon"'
tags: network,vmware,authenticated tags: network,vmware,authenticated
network: network:
- inputs: - inputs:
- data: "\n" - data: "\n"
host: host:
- "{{Hostname}}" - "{{Hostname}}"
- "{{Host}}:902" - "{{Host}}:902"
matchers: matchers:
- type: word - type: word
words: words:
- "ServerDaemonProtocol:SOAP" - "ServerDaemonProtocol:SOAP"
- "MKSDisplayProtocol:VNC" - "MKSDisplayProtocol:VNC"
condition: and condition: and
extractors: extractors:
- type: regex - type: regex
regex: regex:
- "VMware Authentication Daemon Version ([0-9.]+)" - "VMware Authentication Daemon Version ([0-9.]+)"

62
network/detection/xlight-ftp-service-detect.yaml
View File

@ -1,31 +1,31 @@
id: xlight-ftp-service-detect id: xlight-ftp-service-detect
info: info:
name: Xlight FTP Service Detect name: Xlight FTP Service Detect
author: pussycat0x author: pussycat0x
severity: info severity: info
description: | description: |
The File Transfer Protocol (FTP) is a standard network protocol used to transfer computer files between a client and server on a computer network. The File Transfer Protocol (FTP) is a standard network protocol used to transfer computer files between a client and server on a computer network.
metadata: metadata:
verified: true verified: true
shodan-query: 'product:"Xlight ftpd"' shodan-query: 'product:"Xlight ftpd"'
tags: network,ftp,xlight tags: network,ftp,xlight
network: network:
- inputs: - inputs:
- data: "\n" - data: "\n"
host: host:
- "{{Hostname}}" - "{{Hostname}}"
- "{{Host}}:21" - "{{Host}}:21"
matchers: matchers:
- type: word - type: word
part: body part: body
words: words:
- "Xlight FTP Server" - "Xlight FTP Server"
extractors: extractors:
- type: regex - type: regex
regex: regex:
- "Xlight FTP Server ([0-9.]+)" - "Xlight FTP Server ([0-9.]+)"

1716
ssl/weak-cipher-suites.yaml
View File

File diff suppressed because it is too large Load Diff

56
technologies/xerox-workcentre-detect.yaml
View File

@ -1,28 +1,28 @@
id: xerox-workcentre-detect id: xerox-workcentre-detect
info: info:
name: Xerox Workcentre Detect name: Xerox Workcentre Detect
author: pussycat0x author: pussycat0x
severity: info severity: info
metadata: metadata:
verified: true verified: true
shodan-query: title:"XEROX WORKCENTRE" shodan-query: title:"XEROX WORKCENTRE"
tags: tech,xerox,workcentre tags: tech,xerox,workcentre
requests: requests:
- method: GET - method: GET
path: path:
- "{{BaseURL}}/index.dhtml" - "{{BaseURL}}/index.dhtml"
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: word - type: word
part: body part: body
words: words:
- "XEROX WORKCENTRE" - "XEROX WORKCENTRE"
- "/header.php?tab=status" - "/header.php?tab=status"
condition: and condition: and
- type: status - type: status
status: status:
- 200 - 200