daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

JS pre-condition - update

patch-4
pussycat0x 2024-07-10 17:38:01 +05:30
parent e11528b542
commit adcff81246
45 changed files with 140 additions and 62 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
javascript/audit/mysql/mysql-load-file.yaml
View File

@ -12,8 +12,11 @@ info:
max-request: 16 max-request: 16
shodan-query: "port:3306" shodan-query: "port:3306"
tags: js,mysql,network,audit tags: js,mysql,network,audit
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
let m = require('nuclei/mysql'); let m = require('nuclei/mysql');
let c = m.MySQLClient(); let c = m.MySQLClient();
let response = c.ExecuteQuery(Host,Port,User,Pass,Query); let response = c.ExecuteQuery(Host,Port,User,Pass,Query);

5
javascript/backdoor/proftpd-backdoor.yaml
View File

@ -13,8 +13,11 @@ info:
max-request: 1 max-request: 1
shodan-query: "product:\"ProFTPD\"" shodan-query: "product:\"ProFTPD\""
tags: js,network,proftpd,ftp,backdoor tags: js,network,proftpd,ftp,backdoor
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
const data = ["HELP ACIDBITCHEZ\n", "id"]; const data = ["HELP ACIDBITCHEZ\n", "id"];
const c = require("nuclei/net"); const c = require("nuclei/net");
let conn = c.Open('tcp', `${Host}:${Port}`); let conn = c.Open('tcp', `${Host}:${Port}`);

5
javascript/cves/2012/CVE-2012-2122.yaml
View File

@ -29,8 +29,11 @@ info:
- "product:\"MySQL\"" - "product:\"MySQL\""
- product:"mysql" - product:"mysql"
tags: cve,cve2012,js,enum,network,mssql,fuzz,oracle tags: cve,cve2012,js,enum,network,mssql,fuzz,oracle
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
const mysql = require('nuclei/mysql'); const mysql = require('nuclei/mysql');
const client = new mysql.MySQLClient; const client = new mysql.MySQLClient;
for (let i = 1; i <= 1001; i++) { for (let i = 1; i <= 1001; i++) {

5
javascript/cves/2016/CVE-2016-8706.yaml
View File

@ -26,8 +26,11 @@ info:
product: memcached product: memcached
verfied: true verfied: true
tags: cve,cve2016,rce,js,memcached tags: cve,cve2016,rce,js,memcached
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
let packet = bytes.NewBuffer(); let packet = bytes.NewBuffer();
packet.Write(new Uint8Array([0x80, 0x21])) packet.Write(new Uint8Array([0x80, 0x21]))
let cmd = 'stats' let cmd = 'stats'

5
javascript/cves/2019/CVE-2019-9193.yaml
View File

@ -13,8 +13,11 @@ info:
max-request: 1 max-request: 1
shodan-query: "product:\"PostgreSQL\"" shodan-query: "product:\"PostgreSQL\""
tags: cve,cve2018,js,network,postgresql,intrusive tags: cve,cve2018,js,network,postgresql,intrusive
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
const postgres = require('nuclei/postgres'); const postgres = require('nuclei/postgres');
const client = new postgres.PGClient; const client = new postgres.PGClient;
const tbl = tbl_exec const tbl = tbl_exec

5
javascript/cves/2020/CVE-2020-7247.yaml
View File

@ -28,8 +28,11 @@ info:
vendor: openbsd vendor: openbsd
product: opensmtpd product: opensmtpd
tags: packetstorm,cve,cve2020,js,smtp,opensmtpd,network,rce,oast,kev,openbsd tags: packetstorm,cve,cve2020,js,smtp,opensmtpd,network,rce,oast,kev,openbsd
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
const smtp = require('nuclei/smtp'); const smtp = require('nuclei/smtp');
const client = new smtp.Client(Host,Port); const client = new smtp.Client(Host,Port);
const message = new smtp.SMTPMessage(); const message = new smtp.SMTPMessage();

4
javascript/cves/2023/CVE-2023-46604.yaml
View File

@ -37,7 +37,9 @@ variables:
final: "{{prefix}}{{classname}}" final: "{{prefix}}{{classname}}"
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
let m1 = require('nuclei/net'); let m1 = require('nuclei/net');
let m2 = require('nuclei/bytes'); let m2 = require('nuclei/bytes');
let b = m2.Buffer(); let b = m2.Buffer();

5
javascript/cves/2023/CVE-2023-48795.yaml
View File

@ -32,8 +32,11 @@ info:
- product:"openssh" - product:"openssh"
- cpe:"cpe:2.3:a:openbsd:openssh" - cpe:"cpe:2.3:a:openbsd:openssh"
tags: cve,cve2023,packetstorm,seclists,js,ssh,network,passive,openbsd tags: cve,cve2023,packetstorm,seclists,js,ssh,network,passive,openbsd
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
const m = require("nuclei/ssh"); const m = require("nuclei/ssh");
const c = m.SSHClient(); const c = m.SSHClient();
const response = c.ConnectSSHInfoMode(Host, Port); const response = c.ConnectSSHInfoMode(Host, Port);

4
javascript/cves/2024/CVE-2024-23897.yaml
View File

@ -35,7 +35,9 @@ variables:
payload: "{{hex_decode('0000000e00000c636f6e6e6563742d6e6f64650000000e00000c402f6574632f706173737764000000070200055554462d3800000007010005656e5f41450000000003')}}" payload: "{{hex_decode('0000000e00000c636f6e6e6563742d6e6f64650000000e00000c402f6574632f706173737764000000070200055554462d3800000007010005656e5f41450000000003')}}"
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
let m = require('nuclei/net'); let m = require('nuclei/net');
let name=(Host.includes(':') ? Host : Host+":80"); let name=(Host.includes(':') ? Host : Host+":80");
let conn,conn2; let conn,conn2;

1
javascript/default-logins/redis-default-logins.yaml
View File

@ -22,6 +22,7 @@ info:
- intitle:"airflow - dags" || http.html:"apache airflow" - intitle:"airflow - dags" || http.html:"apache airflow"
- intitle:"sign in - airflow" - intitle:"sign in - airflow"
tags: js,redis,default-login,network tags: js,redis,default-login,network
javascript: javascript:
- pre-condition: | - pre-condition: |
isPortOpen(Host,Port) isPortOpen(Host,Port)

4
javascript/detection/oracle-tns-listener.yaml
View File

@ -15,7 +15,9 @@ info:
tags: js,detect,oracle,tns,network tags: js,detect,oracle,tns,network
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
var m = require("nuclei/oracle"); var m = require("nuclei/oracle");
var response = m.IsOracle(Host, Port); var response = m.IsOracle(Host, Port);
Export(response); Export(response);

4
javascript/detection/samba-detect.yaml
View File

@ -13,7 +13,9 @@ info:
vendor: dionaea vendor: dionaea
tags: js,network,samba,detect,linux tags: js,network,samba,detect,linux
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
let m = require("nuclei/smb"); let m = require("nuclei/smb");
let c = new m.SMBClient(); let c = new m.SMBClient();
let response = c.ConnectSMBInfoMode(Host, Port); let response = c.ConnectSMBInfoMode(Host, Port);

4
javascript/detection/ssh-auth-methods.yaml
View File

@ -14,7 +14,9 @@ info:
tags: js,detect,ssh,enum,network tags: js,detect,ssh,enum,network
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
var m = require("nuclei/ssh"); var m = require("nuclei/ssh");
var c = m.SSHClient(); var c = m.SSHClient();
var response = c.ConnectSSHInfoMode(Host, Port); var response = c.ConnectSSHInfoMode(Host, Port);

4
javascript/enumeration/checkpoint-firewall-enum.yaml
View File

@ -13,7 +13,9 @@ info:
tags: js,network,firewall,checkpoint,enum tags: js,network,firewall,checkpoint,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
let packet = bytes.NewBuffer(); let packet = bytes.NewBuffer();
let prob = "\x51\x00\x00\x00\x00\x00\x00\x21\x00\x00\x00\x0bsecuremote\x00" let prob = "\x51\x00\x00\x00\x00\x00\x00\x21\x00\x00\x00\x0bsecuremote\x00"
data = packet.Write(prob) data = packet.Write(prob)

4
javascript/enumeration/ldap/ldap-metadata.yaml
View File

@ -14,7 +14,9 @@ info:
tags: js,network,ldap tags: js,network,ldap
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
const ldap = require('nuclei/ldap'); const ldap = require('nuclei/ldap');
const cfg = new ldap.Config(); const cfg = new ldap.Config();
cfg.Upgrade = true; cfg.Upgrade = true;

5
javascript/enumeration/mysql/mysql-default-login.yaml
View File

@ -14,10 +14,7 @@ info:
javascript: javascript:
- pre-condition: | - pre-condition: |
var m = require("nuclei/mysql"); isPortOpen(Host,Port);
var c = m.MySQLClient();
c.IsMySQL(Host, Port);
code: | code: |
var m = require("nuclei/mysql"); var m = require("nuclei/mysql");
var c = m.MySQLClient(); var c = m.MySQLClient();

5
javascript/enumeration/mysql/mysql-info.yaml
View File

@ -12,8 +12,11 @@ info:
max-request: 1 max-request: 1
shodan-query: "port:3306" shodan-query: "port:3306"
tags: js,mssql,network,enum tags: js,mssql,network,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
var m = require("nuclei/mysql"); var m = require("nuclei/mysql");
var c = m.MySQLClient(); var c = m.MySQLClient();
var response = c.FingerprintMySQL(Host,Port); var response = c.FingerprintMySQL(Host,Port);

4
javascript/enumeration/mysql/mysql-show-databases.yaml
View File

@ -12,7 +12,9 @@ info:
shodan-query: "port:3306" shodan-query: "port:3306"
tags: js,mysql,network,enum tags: js,mysql,network,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
let m = require('nuclei/mysql'); let m = require('nuclei/mysql');
let c = m.MySQLClient(); let c = m.MySQLClient();
let response = c.ExecuteQuery(Host,Port,User,Pass,Query); let response = c.ExecuteQuery(Host,Port,User,Pass,Query);

4
javascript/enumeration/mysql/mysql-show-variables.yaml
View File

@ -13,7 +13,9 @@ info:
tags: js,mysql,network,enum tags: js,mysql,network,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
let m = require('nuclei/mysql'); let m = require('nuclei/mysql');
let c = m.MySQLClient(); let c = m.MySQLClient();
let response = c.ExecuteQuery(Host,Port,User,Pass,Query); let response = c.ExecuteQuery(Host,Port,User,Pass,Query);

5
javascript/enumeration/mysql/mysql-user-enum.yaml
View File

@ -13,8 +13,11 @@ info:
max-request: 16 max-request: 16
shodan-query: "port:3306" shodan-query: "port:3306"
tags: js,mysql,network,enum tags: js,mysql,network,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
let m = require('nuclei/mysql'); let m = require('nuclei/mysql');
let c = m.MySQLClient(); let c = m.MySQLClient();
let response = c.ExecuteQuery(Host,Port,User,Pass,Query); let response = c.ExecuteQuery(Host,Port,User,Pass,Query);

5
javascript/enumeration/pgsql/pgsql-default-db.yaml
View File

@ -13,11 +13,10 @@ info:
max-request: 40 max-request: 40
shodan-query: "product:\"PostgreSQL\"" shodan-query: "product:\"PostgreSQL\""
tags: js,network,postgresql,authenticated,enum tags: js,network,postgresql,authenticated,enum
javascript: javascript:
- pre-condition: | - pre-condition: |
var m = require("nuclei/postgres"); isPortOpen(Host,Port);
var c = m.PGClient();
c.IsPostgres(Host, Port);
code: | code: |
const postgres = require('nuclei/postgres'); const postgres = require('nuclei/postgres');
const client = new postgres.PGClient; const client = new postgres.PGClient;

4
javascript/enumeration/pgsql/pgsql-file-read.yaml
View File

@ -15,9 +15,7 @@ info:
tags: js,network,postgresql,authenticated,enum tags: js,network,postgresql,authenticated,enum
javascript: javascript:
- pre-condition: | - pre-condition: |
var m = require("nuclei/postgres"); isPortOpen(Host,Port);
var c = m.PGClient();
c.IsPostgres(Host, Port);
code: | code: |
const postgres = require('nuclei/postgres'); const postgres = require('nuclei/postgres');
const client = new postgres.PGClient; const client = new postgres.PGClient;

4
javascript/enumeration/pgsql/pgsql-list-database.yaml
View File

@ -16,9 +16,7 @@ info:
tags: js,network,postgresql,authenticated,enum tags: js,network,postgresql,authenticated,enum
javascript: javascript:
- pre-condition: | - pre-condition: |
var m = require("nuclei/postgres"); isPortOpen(Host,Port);
var c = m.PGClient();
c.IsPostgres(Host, Port);
code: | code: |
const postgres = require('nuclei/postgres'); const postgres = require('nuclei/postgres');
const client = new postgres.PGClient; const client = new postgres.PGClient;

4
javascript/enumeration/pgsql/pgsql-list-password-hashes.yaml
View File

@ -17,9 +17,7 @@ info:
tags: js,network,postgresql,authenticated,enum tags: js,network,postgresql,authenticated,enum
javascript: javascript:
- pre-condition: | - pre-condition: |
var m = require("nuclei/postgres"); isPortOpen(Host,Port);
var c = m.PGClient();
c.IsPostgres(Host, Port);
code: | code: |
const postgres = require('nuclei/postgres'); const postgres = require('nuclei/postgres');
const client = new postgres.PGClient; const client = new postgres.PGClient;

4
javascript/enumeration/pgsql/pgsql-list-users.yaml
View File

@ -15,9 +15,7 @@ info:
tags: js,network,postgresql,enum,authenticated tags: js,network,postgresql,enum,authenticated
javascript: javascript:
- pre-condition: | - pre-condition: |
var m = require("nuclei/postgres"); isPortOpen(Host,Port);
var c = m.PGClient();
c.IsPostgres(Host, Port);
code: | code: |
const postgres = require('nuclei/postgres'); const postgres = require('nuclei/postgres');
const client = new postgres.PGClient; const client = new postgres.PGClient;

5
javascript/enumeration/pgsql/pgsql-version-detect.yaml
View File

@ -13,11 +13,10 @@ info:
max-request: 8 max-request: 8
shodan-query: "product:\"PostgreSQL\"" shodan-query: "product:\"PostgreSQL\""
tags: js,network,postgresql,enum,authenticated tags: js,network,postgresql,enum,authenticated
javascript: javascript:
- pre-condition: | - pre-condition: |
var m = require("nuclei/postgres"); isPortOpen(Host,Port);
var c = m.PGClient();
c.IsPostgres(Host, Port);
code: | code: |
const postgres = require('nuclei/postgres'); const postgres = require('nuclei/postgres');
const client = new postgres.PGClient; const client = new postgres.PGClient;

5
javascript/enumeration/pop3/pop3-capabilities-enum.yaml
View File

@ -13,8 +13,11 @@ info:
max-request: 1 max-request: 1
shodan-query: "port:110" shodan-query: "port:110"
tags: js,network,pop3,enum tags: js,network,pop3,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
let data = "CAPA\r\n" let data = "CAPA\r\n"
let c = require("nuclei/net"); let c = require("nuclei/net");
let conn = c.Open('tcp', `${Host}:${Port}`); let conn = c.Open('tcp', `${Host}:${Port}`);

5
javascript/enumeration/redis/redis-info.yaml
View File

@ -24,8 +24,11 @@ info:
- intitle:"airflow - dags" || http.html:"apache airflow" - intitle:"airflow - dags" || http.html:"apache airflow"
- intitle:"sign in - airflow" - intitle:"sign in - airflow"
tags: js,redis,network,enum tags: js,redis,network,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
const redis = require('nuclei/redis'); const redis = require('nuclei/redis');
const info = redis.GetServerInfo(Host,Port); const info = redis.GetServerInfo(Host,Port);
Export(info); Export(info);

5
javascript/enumeration/redis/redis-require-auth.yaml
View File

@ -24,8 +24,11 @@ info:
- intitle:"airflow - dags" || http.html:"apache airflow" - intitle:"airflow - dags" || http.html:"apache airflow"
- intitle:"sign in - airflow" - intitle:"sign in - airflow"
tags: js,redis,network,enum tags: js,redis,network,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
const redis = require('nuclei/redis'); const redis = require('nuclei/redis');
const isAuthenticated = redis.IsAuthenticated(Host,Port); const isAuthenticated = redis.IsAuthenticated(Host,Port);
Export(isAuthenticated); Export(isAuthenticated);

5
javascript/enumeration/rsync/rsync-list-modules.yaml
View File

@ -13,8 +13,11 @@ info:
max-request: 1 max-request: 1
shodan-query: port:873 shodan-query: port:873
tags: network,rsync,enum,js tags: network,rsync,enum,js
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
const c = require("nuclei/net"); const c = require("nuclei/net");
const data = "@RSYNCD: 31.0\n\n" const data = "@RSYNCD: 31.0\n\n"
const conn = c.Open('tcp', `${Host}:${Port}`); const conn = c.Open('tcp', `${Host}:${Port}`);

4
javascript/enumeration/rsync/rsync-version.yaml
View File

@ -13,7 +13,9 @@ info:
tags: js,network,rsync,enum tags: js,network,rsync,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
let m = require('nuclei/rsync'); let m = require('nuclei/rsync');
let response = m.IsRsync(Host,Port); let response = m.IsRsync(Host,Port);
Export(response); Export(response);

5
javascript/enumeration/smb/smb-default-creds.yaml
View File

@ -15,8 +15,11 @@ info:
product: dionaea product: dionaea
vendor: dionaea vendor: dionaea
tags: js,network,smb,enum,default,bruteforce tags: js,network,smb,enum,default,bruteforce
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
var m = require("nuclei/smb"); var m = require("nuclei/smb");
var c = new m.SMBClient(); var c = new m.SMBClient();
var response = c.ListShares(Host, Port, User, Pass); var response = c.ListShares(Host, Port, User, Pass);

5
javascript/enumeration/smb/smb-enum-domains.yaml
View File

@ -15,8 +15,11 @@ info:
product: dionaea product: dionaea
vendor: dionaea vendor: dionaea
tags: js,network,smb,enum tags: js,network,smb,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
var m = require("nuclei/smb"); var m = require("nuclei/smb");
var c = new m.SMBClient(); var c = new m.SMBClient();
var response = c.ListSMBv2Metadata(Host, Port); var response = c.ListSMBv2Metadata(Host, Port);

5
javascript/enumeration/smb/smb-enum.yaml
View File

@ -16,8 +16,11 @@ info:
product: dionaea product: dionaea
vendor: dionaea vendor: dionaea
tags: js,network,smb,enum tags: js,network,smb,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
var m = require("nuclei/smb"); var m = require("nuclei/smb");
var c = m.SMBClient(); var c = m.SMBClient();
var response = c.ListSMBv2Metadata(Host, Port); var response = c.ListSMBv2Metadata(Host, Port);

5
javascript/enumeration/smb/smb-os-detect.yaml
View File

@ -14,8 +14,11 @@ info:
product: dionaea product: dionaea
vendor: dionaea vendor: dionaea
tags: js,network,smb,enum,os tags: js,network,smb,enum,os
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
var m = require("nuclei/smb"); var m = require("nuclei/smb");
var c = new m.SMBClient(); var c = new m.SMBClient();
var response = c.ListSMBv2Metadata(Host, Port); var response = c.ListSMBv2Metadata(Host, Port);

5
javascript/enumeration/smb/smb-version-detect.yaml
View File

@ -12,8 +12,11 @@ info:
product: dionaea product: dionaea
vendor: dionaea vendor: dionaea
tags: js,network,smb,enum tags: js,network,smb,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
let m = require("nuclei/smb"); let m = require("nuclei/smb");
let c = new m.SMBClient(); let c = new m.SMBClient();
let response = c.ConnectSMBInfoMode(Host, Port); let response = c.ConnectSMBInfoMode(Host, Port);

5
javascript/enumeration/smb/smb2-capabilities.yaml
View File

@ -14,8 +14,11 @@ info:
product: dionaea product: dionaea
vendor: dionaea vendor: dionaea
tags: js,network,smb,enum tags: js,network,smb,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
var m = require("nuclei/smb"); var m = require("nuclei/smb");
var c = m.SMBClient(); var c = m.SMBClient();
var response = c.ConnectSMBInfoMode(Host, Port); var response = c.ConnectSMBInfoMode(Host, Port);

5
javascript/enumeration/smb/smb2-server-time.yaml
View File

@ -15,8 +15,11 @@ info:
product: dionaea product: dionaea
vendor: dionaea vendor: dionaea
tags: js,network,smb,enum tags: js,network,smb,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
var m = require("nuclei/smb"); var m = require("nuclei/smb");
var c = m.SMBClient(); var c = m.SMBClient();
var response = c.ConnectSMBInfoMode(Host,Port); var response = c.ConnectSMBInfoMode(Host,Port);

5
javascript/misconfiguration/mysql/mysql-empty-password.yaml
View File

@ -13,10 +13,7 @@ info:
javascript: javascript:
- pre-condition: | - pre-condition: |
var m = require("nuclei/mysql"); isPortOpen(Host,Port);
var c = m.MySQLClient();
c.IsMySQL(Host, Port);
code: | code: |
var m = require("nuclei/mysql"); var m = require("nuclei/mysql");
var c = m.MySQLClient(); var c = m.MySQLClient();

5
javascript/misconfiguration/pgsql/pgsql-empty-password.yaml
View File

@ -13,8 +13,11 @@ info:
max-request: 1 max-request: 1
shodan-query: "product:\"PostgreSQL\"" shodan-query: "product:\"PostgreSQL\""
tags: js,network,postgresql,authenticated tags: js,network,postgresql,authenticated
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
const postgres = require('nuclei/postgres'); const postgres = require('nuclei/postgres');
const client = new postgres.PGClient; const client = new postgres.PGClient;
const connected = client.Connect(Host, Port, User, Pass); const connected = client.Connect(Host, Port, User, Pass);

4
javascript/misconfiguration/pgsql/pgsql-extensions-rce.yaml
View File

@ -16,7 +16,9 @@ info:
shodan-query: "product:\"PostgreSQL\"" shodan-query: "product:\"PostgreSQL\""
tags: postgresql,js,network,rce tags: postgresql,js,network,rce
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
const postgres = require('nuclei/postgres'); const postgres = require('nuclei/postgres');
const client = new postgres.PGClient; const client = new postgres.PGClient;
const collab = shurl const collab = shurl

4
javascript/misconfiguration/smb/smb-anonymous-access.yaml
View File

@ -16,7 +16,9 @@ info:
vendor: dionaea vendor: dionaea
tags: js,network,smb,enum,misconfig tags: js,network,smb,enum,misconfig
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
var m = require("nuclei/smb"); var m = require("nuclei/smb");
var c = m.SMBClient(); var c = m.SMBClient();
var response = c.ListShares(Host,Port,User,Pass); var response = c.ListShares(Host,Port,User,Pass);

4
javascript/misconfiguration/smb/smb-shares.yaml
View File

@ -16,7 +16,9 @@ info:
vendor: dionaea vendor: dionaea
tags: js,network,smb,enum tags: js,network,smb,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
var m = require("nuclei/smb"); var m = require("nuclei/smb");
var c = m.SMBClient(); var c = m.SMBClient();
var response = c.ListShares(Host, Port, User, Pass); var response = c.ListShares(Host, Port, User, Pass);

4
javascript/misconfiguration/smb/smb-signing-not-required.yaml
View File

@ -17,7 +17,9 @@ info:
vendor: dionaea vendor: dionaea
tags: js,network,smb,enum tags: js,network,smb,enum
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
var m = require("nuclei/smb"); var m = require("nuclei/smb");
var c = m.SMBClient(); var c = m.SMBClient();
var response = c.ListSMBv2Metadata(Host, Port, User, Pass); var response = c.ListSMBv2Metadata(Host, Port, User, Pass);

4
javascript/udp/detection/tftp-detect.yaml
View File

@ -12,7 +12,9 @@ info:
shodan-query: "port:69" shodan-query: "port:69"
tags: js,tftp,udp,network tags: js,tftp,udp,network
javascript: javascript:
- code: | - pre-condition: |
isPortOpen(Host,Port);
code: |
let packet = bytes.NewBuffer(); let packet = bytes.NewBuffer();
let message = "1.txt" let message = "1.txt"
let data = message; let data = message;