Merge pull request #11193 from bhutch/panos-management-panel

Create panos-management-panel.yaml
2024-11-12 17:23:57 +05:30 · 2024-11-12 17:23:57 +05:30 · 9dd36ff036
parent a768021fd9 d71f2057fc
commit 9dd36ff036
1 changed files with 36 additions and 0 deletions
--- a/http/exposed-panels/panos-management-panel.yaml
+++ b/http/exposed-panels/panos-management-panel.yaml
@ -0,0 +1,36 @@
+id: panos-management-panel
+
+info:
+  name: PAN-OS Management Panel - Detect
+  author: bhutch
+  severity: info
+  description: |
+    PAN-OS management panel was detected.
+  reference:
+    - https://security.paloaltonetworks.com/PAN-SA-2024-0015
+  classification:
+    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
+    cwe-id: CWE-200
+  metadata:
+    verified: true
+    max-request: 1
+    shodan-query: http.favicon.hash:873381299
+  tags: panel,panos,login,detect,paloaltonetworks
+
+http:
+  - method: GET
+    path:
+      - "{{BaseURL}}/php/login.php"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - "<TITLE>Login</TITLE>"
+          - 'PAN_FORM_CONTENT'
+        condition: and
+
+      - type: status
+        status:
+          - 200