From 38d219be53be404790bf298d7703ff0828794966 Mon Sep 17 00:00:00 2001 From: izn0u Date: Thu, 2 Sep 2021 16:15:34 +0000 Subject: [PATCH 1/6] Added vidyo-super default-creds Template --- default-logins/vidyo/vidyo-super-admin.yaml | 86 +++++++++++++++++++++ 1 file changed, 86 insertions(+) create mode 100644 default-logins/vidyo/vidyo-super-admin.yaml diff --git a/default-logins/vidyo/vidyo-super-admin.yaml b/default-logins/vidyo/vidyo-super-admin.yaml new file mode 100644 index 0000000000..d168d2e3e0 --- /dev/null +++ b/default-logins/vidyo/vidyo-super-admin.yaml @@ -0,0 +1,86 @@ +id: vidyo-Default-Credentials + +info: + name: Vidyo Default Credentials + author: izn0u0 + severity: medium + description: test for default cred super:password + tags: vidyo,default-login + + +requests: + - raw: + - | + GET /super/login.html?lang=en HTTP/1.1 + Host: {{Hostname}} + Origin: {{BaseURL}} + Connection: close + User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:89.0) Gecko/20100101 Firefox/89.0 + Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8 + Accept-Language: en-US,en;q=0.9 + - | + POST /super/super_security_check;jsessionid={{session}}?csrf_tkn={{csrf_tkn}} HTTP/1.1 + Host: {{Hostname}} + User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:89.0) Gecko/20100101 Firefox/89.0 + Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8 + Accept-Language: en-US,en;q=0.5 + Accept-Encoding: gzip, deflate + Content-Type: application/x-www-form-urlencoded + Content-Length: 32 + Origin: {{BaseURL}} + DNT: 1 + Connection: close + Referer: http://{{Hostname}}/super/login.html?lang=en + Cookie: JSESSIONID={{session}} ; VidyoPortalSuperLanguage=en + Upgrade-Insecure-Requests: 1 + + username=super&password=password + + + - | + GET /super/loginhistory.html?csrf_tkn={{csrf_tkn}} HTTP/1.1 + Host: {{Hostname}} + User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:89.0) Gecko/20100101 Firefox/89.0 + Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8 + Accept-Language: en-US,en;q=0.5 + Accept-Encoding: gzip, deflate + Referer: {{BaseURL}}/super/login.html?lang=en + DNT: 1 + Connection: close + Upgrade-Insecure-Requests: 1 + + + + + + extractors: + - type: regex + name: csrf_tkn + group: 1 + part: body + internal: true + regex: + - 'csrf_tkn=([A-Za-z0-9.-]+)' + + - type: kval + name: session + internal: true + part: header + kval: + - JSESSIONID + + cookie-reuse: true + redirects: true + #matchers-condition: and + matchers: + - type: status + status: + - 200 + + #- type: word + #words: + #- "welcome to" + #part: body + #- type: dsl + #dsl: + #- 'contains(body, "welcome to")' \ No newline at end of file From 223c8ea750502d5db6c323b4196cfb8b0d1e6ba3 Mon Sep 17 00:00:00 2001 From: izn0u <40471524+izn0u@users.noreply.github.com> Date: Thu, 2 Sep 2021 16:43:49 +0000 Subject: [PATCH 2/6] Update vidyo-super-admin.yaml --- default-logins/vidyo/vidyo-super-admin.yaml | 11 +---------- 1 file changed, 1 insertion(+), 10 deletions(-) diff --git a/default-logins/vidyo/vidyo-super-admin.yaml b/default-logins/vidyo/vidyo-super-admin.yaml index d168d2e3e0..901a75a5b3 100644 --- a/default-logins/vidyo/vidyo-super-admin.yaml +++ b/default-logins/vidyo/vidyo-super-admin.yaml @@ -2,7 +2,7 @@ id: vidyo-Default-Credentials info: name: Vidyo Default Credentials - author: izn0u0 + author: izn0u severity: medium description: test for default cred super:password tags: vidyo,default-login @@ -71,16 +71,7 @@ requests: cookie-reuse: true redirects: true - #matchers-condition: and matchers: - type: status status: - 200 - - #- type: word - #words: - #- "welcome to" - #part: body - #- type: dsl - #dsl: - #- 'contains(body, "welcome to")' \ No newline at end of file From f5153bda65eb5340065c1f91701fb347e4c2cf70 Mon Sep 17 00:00:00 2001 From: sandeep Date: Thu, 2 Sep 2021 23:02:41 +0530 Subject: [PATCH 3/6] Update vidyo-super-admin.yaml --- default-logins/vidyo/vidyo-super-admin.yaml | 30 +++------------------ 1 file changed, 4 insertions(+), 26 deletions(-) diff --git a/default-logins/vidyo/vidyo-super-admin.yaml b/default-logins/vidyo/vidyo-super-admin.yaml index 901a75a5b3..dc9e7c8953 100644 --- a/default-logins/vidyo/vidyo-super-admin.yaml +++ b/default-logins/vidyo/vidyo-super-admin.yaml @@ -10,47 +10,25 @@ info: requests: - raw: - - | + - | GET /super/login.html?lang=en HTTP/1.1 Host: {{Hostname}} Origin: {{BaseURL}} - Connection: close - User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:89.0) Gecko/20100101 Firefox/89.0 - Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8 - Accept-Language: en-US,en;q=0.9 - - | + + - | POST /super/super_security_check;jsessionid={{session}}?csrf_tkn={{csrf_tkn}} HTTP/1.1 Host: {{Hostname}} - User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:89.0) Gecko/20100101 Firefox/89.0 - Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8 - Accept-Language: en-US,en;q=0.5 - Accept-Encoding: gzip, deflate Content-Type: application/x-www-form-urlencoded - Content-Length: 32 Origin: {{BaseURL}} - DNT: 1 - Connection: close Referer: http://{{Hostname}}/super/login.html?lang=en Cookie: JSESSIONID={{session}} ; VidyoPortalSuperLanguage=en - Upgrade-Insecure-Requests: 1 username=super&password=password - - - | + - | GET /super/loginhistory.html?csrf_tkn={{csrf_tkn}} HTTP/1.1 Host: {{Hostname}} - User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:89.0) Gecko/20100101 Firefox/89.0 - Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8 - Accept-Language: en-US,en;q=0.5 - Accept-Encoding: gzip, deflate Referer: {{BaseURL}}/super/login.html?lang=en - DNT: 1 - Connection: close - Upgrade-Insecure-Requests: 1 - - - extractors: From 601aa39472b51a0a1dd228ada5ddf4592ae5b2bf Mon Sep 17 00:00:00 2001 From: sandeep Date: Thu, 2 Sep 2021 23:03:07 +0530 Subject: [PATCH 4/6] Update vidyo-super-admin.yaml --- default-logins/vidyo/vidyo-super-admin.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/default-logins/vidyo/vidyo-super-admin.yaml b/default-logins/vidyo/vidyo-super-admin.yaml index dc9e7c8953..c3b20673bb 100644 --- a/default-logins/vidyo/vidyo-super-admin.yaml +++ b/default-logins/vidyo/vidyo-super-admin.yaml @@ -1,4 +1,4 @@ -id: vidyo-Default-Credentials +id: vidyo-default-credentials info: name: Vidyo Default Credentials From c038ae90abeb0579c3b09419a079816c9c9b38cf Mon Sep 17 00:00:00 2001 From: sandeep Date: Thu, 2 Sep 2021 23:05:12 +0530 Subject: [PATCH 5/6] Update vidyo-super-admin.yaml --- default-logins/vidyo/vidyo-super-admin.yaml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/default-logins/vidyo/vidyo-super-admin.yaml b/default-logins/vidyo/vidyo-super-admin.yaml index c3b20673bb..0749aa4548 100644 --- a/default-logins/vidyo/vidyo-super-admin.yaml +++ b/default-logins/vidyo/vidyo-super-admin.yaml @@ -30,6 +30,8 @@ requests: Host: {{Hostname}} Referer: {{BaseURL}}/super/login.html?lang=en + cookie-reuse: true + redirects: true extractors: - type: regex @@ -47,9 +49,7 @@ requests: kval: - JSESSIONID - cookie-reuse: true - redirects: true matchers: - - type: status - status: - - 200 + - type: word + words: + - "Vidyo MainSuperAdmin" From ae801e87eb8eb881d1c5bbb3fb5132f96209f561 Mon Sep 17 00:00:00 2001 From: sandeep Date: Sat, 4 Sep 2021 16:38:32 +0530 Subject: [PATCH 6/6] minor update --- ...in.yaml => vidyo-default-credentials.yaml} | 19 +++++++++---------- 1 file changed, 9 insertions(+), 10 deletions(-) rename default-logins/vidyo/{vidyo-super-admin.yaml => vidyo-default-credentials.yaml} (76%) diff --git a/default-logins/vidyo/vidyo-super-admin.yaml b/default-logins/vidyo/vidyo-default-credentials.yaml similarity index 76% rename from default-logins/vidyo/vidyo-super-admin.yaml rename to default-logins/vidyo/vidyo-default-credentials.yaml index 0749aa4548..1c27bad550 100644 --- a/default-logins/vidyo/vidyo-super-admin.yaml +++ b/default-logins/vidyo/vidyo-default-credentials.yaml @@ -5,6 +5,7 @@ info: author: izn0u severity: medium description: test for default cred super:password + reference: https://support.vidyocloud.com/hc/en-us/articles/226265128 tags: vidyo,default-login @@ -20,19 +21,11 @@ requests: Host: {{Hostname}} Content-Type: application/x-www-form-urlencoded Origin: {{BaseURL}} - Referer: http://{{Hostname}}/super/login.html?lang=en + Referer: {{RootURL}}/super/login.html?lang=en Cookie: JSESSIONID={{session}} ; VidyoPortalSuperLanguage=en username=super&password=password - - | - GET /super/loginhistory.html?csrf_tkn={{csrf_tkn}} HTTP/1.1 - Host: {{Hostname}} - Referer: {{BaseURL}}/super/login.html?lang=en - - cookie-reuse: true - redirects: true - extractors: - type: regex name: csrf_tkn @@ -49,7 +42,13 @@ requests: kval: - JSESSIONID + matchers-condition: and matchers: - type: word + part: header words: - - "Vidyo MainSuperAdmin" + - "/super/index.html" + + - type: status + status: + - 302 \ No newline at end of file