Update directory-listing.yaml

2024-06-01 10:29:33 +04:00 · 2024-06-01 10:29:33 +04:00 · a6d4f5de35
parent dd5224cb5f
commit a6d4f5de35
1 changed files with 28 additions and 19 deletions
--- a/http/miscellaneous/directory-listing.yaml
+++ b/http/miscellaneous/directory-listing.yaml
@ -5,10 +5,14 @@ info:
  author: theMiddle
  severity: low
  description: Directory Indexing is a web server feature that allows the contents of a directory to be displayed when no index file is present. This can be a security risk as it can expose sensitive files, old backup or unreferenced files.
+  impact: |
+    Sensitive files and directories may be exposed to unauthorized users.
+  remediation: |
+    Disable directory listing in the web server configuration.
  reference:
    - https://owasp.org/www-project-web-security-testing-guide/v42/4-Web_Application_Security_Testing/02-Configuration_and_Deployment_Management_Testing/04-Review_Old_Backup_and_Unreferenced_Files_for_Sensitive_Information
    - https://portswigger.net/kb/issues/00600100_directory-listing
-  tags: miscellaneous,misc,generic,misconfguration,web
+  tags: misc,generic,misconfig,fuzz

 flow: |
  function target_is_in_scope(url) {
@ -52,16 +56,17 @@ http:
  - method: GET
    path:
      - "{{BaseURL}}"
-    redirects: true
+
+    host-redirects: true
+    max-redirects: 2
    matchers:
-      - type: status
+      - type: dsl
        internal: true
-        status:
-          - 200
-      - type: word
-        words:
-          - "text/html"
-        part: header
+        dsl:
+          - contains(header, "text/html")
+          - status_code_1 == 200
+        condition: and
+
    extractors:
      - type: xpath
        name: links
@ -73,18 +78,22 @@ http:
  - method: GET
    path:
      - "{{BaseURL}}{{path_to_check}}"
-    redirects: true
+
+    host-redirects: true
+    max-redirects: 2
+
    matchers-condition: and
    matchers:
-      - type: status
-        internal: true
-        status:
-          - 200
-      - type: word
-        words:
-          - "text/html"
-        part: header
      - type: word
+        part: body
        words:
          - "<title>Index of"
-        part: body
+
+      - type: word
+        part: header
+        words:
+          - "text/html"
+
+      - type: status
+        status:
+          - 200