Minor updates and Gitlab workflow

2021-04-05 23:45:14 +05:30 · 2021-04-05 23:45:14 +05:30 · a0d6838672
parent 8a45f2704f
commit a0d6838672
3 changed files with 54 additions and 38 deletions
--- a/exposures/configs/gitlab-infoleak.yaml
+++ b/exposures/configs/gitlab-infoleak.yaml
@ -1,38 +0,0 @@
-id: gitlab-infoleak
-
-info:
-  name: Gitlab InfoLeaks
-  author: pikpikcu
-  severity: low
-  reference: https://gitlab.com/gitlab-org/gitlab/-/issues/244275
-  tags: gitlab,disclosure
-
-
-requests:
-  - method: POST
-    path:
-      - "{{BaseURL}}/api/graphql"
-    headers:
-      Content-Type: application/json
-    body: |
-      {
-        "query": "{\nusers {\nedges {\n  node {\n    username\n    email\n    avatarUrl\n    status {\n      emoji\n      message\n      messageHtml\n     }\n    }\n   }\n  }\n }",
-        "variables": null,
-        "operationName": null
-      }
-
-    matchers-condition: and
-    matchers:
-      - type: word
-        words:
-          - "application/json"
-        part: header
-
-      - type: word
-        words:
-          - "avatarUrl"
-        condition: and
-
-      - type: status
-        status:
-          - 200
--- a/misconfiguration/gitlab/gitlab-user-enumeration.yaml
+++ b/misconfiguration/gitlab/gitlab-user-enumeration.yaml
@ -0,0 +1,38 @@
+id: gitlab-user-enumeration
+
+info:
+  name: Gitlab User enumeration
+  author: pikpikcu
+  severity: info
+  tags: gitlab,enum
+
+
+requests:
+  - method: POST
+    path:
+      - "{{BaseURL}}/api/graphql"
+    headers:
+      Content-Type: application/json
+    body: |
+        {
+           "query":"{\nusers {\nedges {\n  node {\n    username\n    email\n    avatarUrl\n    }\n   }\n  }\n }"
+        }
+
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - "application/json"
+        part: header
+
+      - type: word
+        words:
+          - avatarUrl
+          - username
+          - email
+        condition: and
+
+      - type: status
+        status:
+          - 200
--- a/workflows/gitlab-workflow.yaml
+++ b/workflows/gitlab-workflow.yaml
@ -0,0 +1,16 @@
+id: gitlab-workflow
+
+info:
+  name: GitLab Security Checks
+  author: pdteam
+  description: A simple workflow that runs all GitLab related nuclei templates on a given target.
+  tags: workflow
+
+workflows:
+
+  - template: exposed-panels/gitlab-detect.yaml
+    subtemplates:
+      - template: misconfiguration/gitlab/gitlab-public-repos.yaml
+      - template: misconfiguration/gitlab/gitlab-public-signup.yaml
+      - template: misconfiguration/gitlab/gitlab-public-snippets.yaml
+      - template: misconfiguration/gitlab/gitlab-user-enumeration.yaml