Removed duplicate template + improved existing one (#4084)

2022-04-08 15:54:15 +05:30 · 2022-04-08 15:54:15 +05:30 · 9ca71bf0b4
parent 2cc1186a41
commit 9ca71bf0b4
3 changed files with 16 additions and 68 deletions
--- a/exposed-panels/aims-password-mgmt-client.yaml
+++ b/exposed-panels/aims-password-mgmt-client.yaml
@ -1,27 +0,0 @@
-id: aims-password-mgmt-client
-
-info:
-  name: Aims Password Management Client Detect
-  author: iamthefrogy
-  description: An Aims Password management client was detected.
-  severity: info
-  tags: panel,aims
-  reference:
-    - https://www.avatier.com/products/identity-management/password-management/
-  classification:
-    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
-    cvss-score: 0.0
-    cve-id:
-    cwe-id: CWE-200
-
-requests:
-  - method: GET
-    path:
-      - "{{BaseURL}}/aims/ps/"
-
-    matchers:
-      - type: word
-        words:
-          - "Avatier Corporation"
-
-# Enhanced by mp on 2022/03/21
--- a/exposed-panels/aims-password-portal.yaml
+++ b/exposed-panels/aims-password-portal.yaml
@ -1,32 +0,0 @@
-id: aims-password-portal
-
-info:
-  name: AIMS Password Management Portal
-  author: dhiyaneshDK
-  severity: info
-  description: An AIMS Password Management portal was discovered.
-  reference:
-    - https://www.exploit-db.com/ghdb/6576
-    - https://www.avatier.com/products/identity-management/password-management/
-  tags: panel,aims
-  classification:
-    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
-    cvss-score: 0.0
-    cve-id:
-    cwe-id: CWE-200
-
-requests:
-  - method: GET
-    path:
-      - '{{BaseURL}}/aims/ps/default.aspx'
-
-    matchers-condition: and
-    matchers:
-      - type: word
-        words:
-          - '<title id="PageTitle">Password Management Client</title>'
-      - type: status
-        status:
-          - 200
-
-# Enhanced by mp on 2022/03/21
--- a/exposed-panels/avatier-password-management.yaml
+++ b/exposed-panels/avatier-password-management.yaml
@ -1,19 +1,19 @@
 id: avatier-password-management

 info:
-  name: Avatier Password Management Panel Detect
-  author: praetorian-thendrickson
+  name: Avatier Password Management Panel
+  author: praetorian-thendrickson,iamthefrogy,dhiyaneshDK
  severity: info
  description: An Avatier password management panel was detected.
  reference:
-    - https://www.avatier.com
+    - https://www.exploit-db.com/ghdb/6576
+    - https://www.avatier.com/products/identity-management/password-management/
  metadata:
    shodan-query: http.favicon.hash:983734701
-  tags: panel,avatier
+  tags: panel,avatier,aims
  classification:
-    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
-    cvss-score: 5.3
-    cve-id:
+    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
+    cvss-score: 0.0
    cwe-id: CWE-200

 requests:
@ -21,12 +21,19 @@ requests:
    path:
      - '{{BaseURL}}/aims/ps/'

-    matchers-condition: and
+    redirects: true
+    max-redirects: 2
+    matchers-condition: or
    matchers:
      - type: word
        words:
          - 'LabelWelcomeToPS'
          - 'Avatier Corporation'
-        condition: and
+          - 'Welcome to Password Management'
+        condition: or
+
+      - type: word
+        words:
+          - 'Password Management Client'

 # Enhanced by mp on 2022/03/20