more tags update

2021-04-02 19:24:37 +05:30 · 2021-04-02 19:24:37 +05:30 · aced04c1ee
parent 34d510b328
commit aced04c1ee
5 changed files with 6 additions and 0 deletions
--- a/fuzzing/arbitrary-file-read.yaml
+++ b/fuzzing/arbitrary-file-read.yaml
@ -5,6 +5,7 @@ info:
  author: Sushant Kamble (https://in.linkedin.com/in/sushantkamble)
  severity: high
  description: Searches for /etc/passwd on passed URLs.
+  tags: fuzz,lfi

 requests:
  - method: GET
--- a/fuzzing/directory-traversal.yaml
+++ b/fuzzing/directory-traversal.yaml
@ -6,6 +6,7 @@ info:
  severity: high
  description: Detect basic directory traversal leading to a leak of sensitive files.
  tags: lfi,fuzz
+
 requests:
  - method: GET
    path:
--- a/fuzzing/generic-lfi-fuzzing.yaml
+++ b/fuzzing/generic-lfi-fuzzing.yaml
@ -4,6 +4,7 @@ info:
  author: geeknik
  severity: high
  description: A generic test for Local File Inclusion
+  tags: fuzz,lfi

 requests:
  - method: GET
--- a/fuzzing/header-command-injection.yaml
+++ b/fuzzing/header-command-injection.yaml
@ -5,6 +5,7 @@ info:
  author: geeknik
  severity: high
  description: Fuzzing headers for command injection
+  tags: fuzz,rce

 requests:
  - payloads:
--- a/fuzzing/iis-shortname.yaml
+++ b/fuzzing/iis-shortname.yaml
@ -4,6 +4,8 @@ info:
  author: nodauf
  severity: info
  description: If IIS use old .Net Framwork it's possible to enumeration folder with the symbol ~.
+  tags: fuzz
+
  reference: |
        - https://github.com/lijiejie/IIS_shortname_Scanner
        - https://www.exploit-db.com/exploits/19525