JS pre-condition - update

2024-07-10 17:38:01 +05:30 · 2024-07-10 17:38:01 +05:30 · adcff81246
parent e11528b542
commit adcff81246
45 changed files with 140 additions and 62 deletions
--- a/javascript/audit/mysql/mysql-load-file.yaml
+++ b/javascript/audit/mysql/mysql-load-file.yaml
@ -12,8 +12,11 @@ info:
    max-request: 16
    shodan-query: "port:3306"
  tags: js,mysql,network,audit
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      let m = require('nuclei/mysql');
      let c = m.MySQLClient();
      let response = c.ExecuteQuery(Host,Port,User,Pass,Query);
--- a/javascript/backdoor/proftpd-backdoor.yaml
+++ b/javascript/backdoor/proftpd-backdoor.yaml
@ -13,8 +13,11 @@ info:
    max-request: 1
    shodan-query: "product:\"ProFTPD\""
  tags: js,network,proftpd,ftp,backdoor
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      const data = ["HELP ACIDBITCHEZ\n", "id"];
      const c = require("nuclei/net");
      let conn = c.Open('tcp', `${Host}:${Port}`);
--- a/javascript/cves/2012/CVE-2012-2122.yaml
+++ b/javascript/cves/2012/CVE-2012-2122.yaml
@ -29,8 +29,11 @@ info:
      - "product:\"MySQL\""
      - product:"mysql"
  tags: cve,cve2012,js,enum,network,mssql,fuzz,oracle
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      const mysql = require('nuclei/mysql');
      const client = new mysql.MySQLClient;
      for (let i = 1; i <= 1001; i++) {
--- a/javascript/cves/2016/CVE-2016-8706.yaml
+++ b/javascript/cves/2016/CVE-2016-8706.yaml
@ -26,8 +26,11 @@ info:
    product: memcached
    verfied: true
  tags: cve,cve2016,rce,js,memcached
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      let packet = bytes.NewBuffer();
      packet.Write(new Uint8Array([0x80, 0x21]))
      let cmd = 'stats'
--- a/javascript/cves/2019/CVE-2019-9193.yaml
+++ b/javascript/cves/2019/CVE-2019-9193.yaml
@ -13,8 +13,11 @@ info:
    max-request: 1
    shodan-query: "product:\"PostgreSQL\""
  tags: cve,cve2018,js,network,postgresql,intrusive
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      const postgres = require('nuclei/postgres');
      const client = new postgres.PGClient;
      const tbl = tbl_exec
--- a/javascript/cves/2020/CVE-2020-7247.yaml
+++ b/javascript/cves/2020/CVE-2020-7247.yaml
@ -28,8 +28,11 @@ info:
    vendor: openbsd
    product: opensmtpd
  tags: packetstorm,cve,cve2020,js,smtp,opensmtpd,network,rce,oast,kev,openbsd
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      const smtp = require('nuclei/smtp');
      const client = new smtp.Client(Host,Port);
      const message = new smtp.SMTPMessage();
--- a/javascript/cves/2023/CVE-2023-46604.yaml
+++ b/javascript/cves/2023/CVE-2023-46604.yaml
@ -37,7 +37,9 @@ variables:
  final: "{{prefix}}{{classname}}"

 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      let m1 = require('nuclei/net');
      let m2 = require('nuclei/bytes');
      let b = m2.Buffer();
--- a/javascript/cves/2023/CVE-2023-48795.yaml
+++ b/javascript/cves/2023/CVE-2023-48795.yaml
@ -32,8 +32,11 @@ info:
      - product:"openssh"
      - cpe:"cpe:2.3:a:openbsd:openssh"
  tags: cve,cve2023,packetstorm,seclists,js,ssh,network,passive,openbsd
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      const m = require("nuclei/ssh");
      const c = m.SSHClient();
      const response = c.ConnectSSHInfoMode(Host, Port);
--- a/javascript/cves/2024/CVE-2024-23897.yaml
+++ b/javascript/cves/2024/CVE-2024-23897.yaml
@ -35,7 +35,9 @@ variables:
  payload: "{{hex_decode('0000000e00000c636f6e6e6563742d6e6f64650000000e00000c402f6574632f706173737764000000070200055554462d3800000007010005656e5f41450000000003')}}"

 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      let m = require('nuclei/net');
      let name=(Host.includes(':') ? Host : Host+":80");
      let conn,conn2;
--- a/javascript/default-logins/redis-default-logins.yaml
+++ b/javascript/default-logins/redis-default-logins.yaml
@ -22,6 +22,7 @@ info:
      - intitle:"airflow - dags" || http.html:"apache airflow"
      - intitle:"sign in - airflow"
  tags: js,redis,default-login,network
+
 javascript:
  - pre-condition: |
      isPortOpen(Host,Port)
--- a/javascript/detection/oracle-tns-listener.yaml
+++ b/javascript/detection/oracle-tns-listener.yaml
@ -15,7 +15,9 @@ info:
  tags: js,detect,oracle,tns,network

 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      var m = require("nuclei/oracle");
      var response = m.IsOracle(Host, Port);
      Export(response);
--- a/javascript/detection/samba-detect.yaml
+++ b/javascript/detection/samba-detect.yaml
@ -13,7 +13,9 @@ info:
    vendor: dionaea
  tags: js,network,samba,detect,linux
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      let m = require("nuclei/smb");
      let c = new m.SMBClient();
      let response = c.ConnectSMBInfoMode(Host, Port);
--- a/javascript/detection/ssh-auth-methods.yaml
+++ b/javascript/detection/ssh-auth-methods.yaml
@ -14,7 +14,9 @@ info:
  tags: js,detect,ssh,enum,network

 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      var m = require("nuclei/ssh");
      var c = m.SSHClient();
      var response = c.ConnectSSHInfoMode(Host, Port);
--- a/javascript/enumeration/checkpoint-firewall-enum.yaml
+++ b/javascript/enumeration/checkpoint-firewall-enum.yaml
@ -13,7 +13,9 @@ info:
  tags: js,network,firewall,checkpoint,enum

 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      let packet = bytes.NewBuffer();
      let prob = "\x51\x00\x00\x00\x00\x00\x00\x21\x00\x00\x00\x0bsecuremote\x00"
      data = packet.Write(prob)
--- a/javascript/enumeration/ldap/ldap-metadata.yaml
+++ b/javascript/enumeration/ldap/ldap-metadata.yaml
@ -14,7 +14,9 @@ info:
  tags: js,network,ldap

 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      const ldap = require('nuclei/ldap');
      const cfg = new ldap.Config();
      cfg.Upgrade = true;
--- a/javascript/enumeration/mysql/mysql-default-login.yaml
+++ b/javascript/enumeration/mysql/mysql-default-login.yaml
@ -14,10 +14,7 @@ info:

 javascript:
  - pre-condition: |
-      var m = require("nuclei/mysql");
-      var c = m.MySQLClient();
-      c.IsMySQL(Host, Port);
-
+      isPortOpen(Host,Port);
    code: |
      var m = require("nuclei/mysql");
      var c = m.MySQLClient();
--- a/javascript/enumeration/mysql/mysql-info.yaml
+++ b/javascript/enumeration/mysql/mysql-info.yaml
@ -12,8 +12,11 @@ info:
    max-request: 1
    shodan-query: "port:3306"
  tags: js,mssql,network,enum
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      var m = require("nuclei/mysql");
      var c = m.MySQLClient();
      var response = c.FingerprintMySQL(Host,Port);
--- a/javascript/enumeration/mysql/mysql-show-databases.yaml
+++ b/javascript/enumeration/mysql/mysql-show-databases.yaml
@ -12,7 +12,9 @@ info:
    shodan-query: "port:3306"
  tags: js,mysql,network,enum
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      let m = require('nuclei/mysql');
      let c = m.MySQLClient();
      let response = c.ExecuteQuery(Host,Port,User,Pass,Query);
--- a/javascript/enumeration/mysql/mysql-show-variables.yaml
+++ b/javascript/enumeration/mysql/mysql-show-variables.yaml
@ -13,7 +13,9 @@ info:
  tags: js,mysql,network,enum

 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      let m = require('nuclei/mysql');
      let c = m.MySQLClient();
      let response = c.ExecuteQuery(Host,Port,User,Pass,Query);
--- a/javascript/enumeration/mysql/mysql-user-enum.yaml
+++ b/javascript/enumeration/mysql/mysql-user-enum.yaml
@ -13,8 +13,11 @@ info:
    max-request: 16
    shodan-query: "port:3306"
  tags: js,mysql,network,enum
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      let m = require('nuclei/mysql');
      let c = m.MySQLClient();
      let response = c.ExecuteQuery(Host,Port,User,Pass,Query);
--- a/javascript/enumeration/pgsql/pgsql-default-db.yaml
+++ b/javascript/enumeration/pgsql/pgsql-default-db.yaml
@ -13,11 +13,10 @@ info:
    max-request: 40
    shodan-query: "product:\"PostgreSQL\""
  tags: js,network,postgresql,authenticated,enum
+
 javascript:
  - pre-condition: |
-      var m = require("nuclei/postgres");
-      var c = m.PGClient();
-      c.IsPostgres(Host, Port);
+      isPortOpen(Host,Port);
    code: |
      const postgres = require('nuclei/postgres');
      const client = new postgres.PGClient;
--- a/javascript/enumeration/pgsql/pgsql-file-read.yaml
+++ b/javascript/enumeration/pgsql/pgsql-file-read.yaml
@ -15,9 +15,7 @@ info:
  tags: js,network,postgresql,authenticated,enum
 javascript:
  - pre-condition: |
-      var m = require("nuclei/postgres");
-      var c = m.PGClient();
-      c.IsPostgres(Host, Port);
+      isPortOpen(Host,Port);
    code: |
      const postgres = require('nuclei/postgres');
      const client = new postgres.PGClient;
--- a/javascript/enumeration/pgsql/pgsql-list-database.yaml
+++ b/javascript/enumeration/pgsql/pgsql-list-database.yaml
@ -16,9 +16,7 @@ info:
  tags: js,network,postgresql,authenticated,enum
 javascript:
  - pre-condition: |
-      var m = require("nuclei/postgres");
-      var c = m.PGClient();
-      c.IsPostgres(Host, Port);
+      isPortOpen(Host,Port);
    code: |
      const postgres = require('nuclei/postgres');
      const client = new postgres.PGClient;
--- a/javascript/enumeration/pgsql/pgsql-list-password-hashes.yaml
+++ b/javascript/enumeration/pgsql/pgsql-list-password-hashes.yaml
@ -17,9 +17,7 @@ info:
  tags: js,network,postgresql,authenticated,enum
 javascript:
  - pre-condition: |
-      var m = require("nuclei/postgres");
-      var c = m.PGClient();
-      c.IsPostgres(Host, Port);
+      isPortOpen(Host,Port);
    code: |
      const postgres = require('nuclei/postgres');
      const client = new postgres.PGClient;
--- a/javascript/enumeration/pgsql/pgsql-list-users.yaml
+++ b/javascript/enumeration/pgsql/pgsql-list-users.yaml
@ -15,9 +15,7 @@ info:
  tags: js,network,postgresql,enum,authenticated
 javascript:
  - pre-condition: |
-      var m = require("nuclei/postgres");
-      var c = m.PGClient();
-      c.IsPostgres(Host, Port);
+      isPortOpen(Host,Port);
    code: |
      const postgres = require('nuclei/postgres');
      const client = new postgres.PGClient;
--- a/javascript/enumeration/pgsql/pgsql-version-detect.yaml
+++ b/javascript/enumeration/pgsql/pgsql-version-detect.yaml
@ -13,11 +13,10 @@ info:
    max-request: 8
    shodan-query: "product:\"PostgreSQL\""
  tags: js,network,postgresql,enum,authenticated
+
 javascript:
  - pre-condition: |
-      var m = require("nuclei/postgres");
-      var c = m.PGClient();
-      c.IsPostgres(Host, Port);
+      isPortOpen(Host,Port);
    code: |
      const postgres = require('nuclei/postgres');
      const client = new postgres.PGClient;
--- a/javascript/enumeration/pop3/pop3-capabilities-enum.yaml
+++ b/javascript/enumeration/pop3/pop3-capabilities-enum.yaml
@ -13,8 +13,11 @@ info:
    max-request: 1
    shodan-query: "port:110"
  tags: js,network,pop3,enum
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      let data = "CAPA\r\n"
      let c = require("nuclei/net");
      let conn = c.Open('tcp', `${Host}:${Port}`);
--- a/javascript/enumeration/redis/redis-info.yaml
+++ b/javascript/enumeration/redis/redis-info.yaml
@ -24,8 +24,11 @@ info:
      - intitle:"airflow - dags" || http.html:"apache airflow"
      - intitle:"sign in - airflow"
  tags: js,redis,network,enum
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      const redis = require('nuclei/redis');
      const info = redis.GetServerInfo(Host,Port);
      Export(info);
--- a/javascript/enumeration/redis/redis-require-auth.yaml
+++ b/javascript/enumeration/redis/redis-require-auth.yaml
@ -24,8 +24,11 @@ info:
      - intitle:"airflow - dags" || http.html:"apache airflow"
      - intitle:"sign in - airflow"
  tags: js,redis,network,enum
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      const redis = require('nuclei/redis');
      const isAuthenticated = redis.IsAuthenticated(Host,Port);
      Export(isAuthenticated);
--- a/javascript/enumeration/rsync/rsync-list-modules.yaml
+++ b/javascript/enumeration/rsync/rsync-list-modules.yaml
@ -13,8 +13,11 @@ info:
    max-request: 1
    shodan-query: port:873
  tags: network,rsync,enum,js
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      const c = require("nuclei/net");
      const data = "@RSYNCD: 31.0\n\n"
      const conn = c.Open('tcp', `${Host}:${Port}`);
--- a/javascript/enumeration/rsync/rsync-version.yaml
+++ b/javascript/enumeration/rsync/rsync-version.yaml
@ -13,7 +13,9 @@ info:
  tags: js,network,rsync,enum

 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      let m = require('nuclei/rsync');
      let response = m.IsRsync(Host,Port);
      Export(response);
--- a/javascript/enumeration/smb/smb-default-creds.yaml
+++ b/javascript/enumeration/smb/smb-default-creds.yaml
@ -15,8 +15,11 @@ info:
    product: dionaea
    vendor: dionaea
  tags: js,network,smb,enum,default,bruteforce
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      var m = require("nuclei/smb");
      var c = new m.SMBClient();
      var response = c.ListShares(Host, Port, User, Pass);
--- a/javascript/enumeration/smb/smb-enum-domains.yaml
+++ b/javascript/enumeration/smb/smb-enum-domains.yaml
@ -15,8 +15,11 @@ info:
    product: dionaea
    vendor: dionaea
  tags: js,network,smb,enum
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      var m = require("nuclei/smb");
      var c = new m.SMBClient();
      var response = c.ListSMBv2Metadata(Host, Port);
--- a/javascript/enumeration/smb/smb-enum.yaml
+++ b/javascript/enumeration/smb/smb-enum.yaml
@ -16,8 +16,11 @@ info:
    product: dionaea
    vendor: dionaea
  tags: js,network,smb,enum
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      var m = require("nuclei/smb");
      var c = m.SMBClient();
      var response = c.ListSMBv2Metadata(Host, Port);
--- a/javascript/enumeration/smb/smb-os-detect.yaml
+++ b/javascript/enumeration/smb/smb-os-detect.yaml
@ -14,8 +14,11 @@ info:
    product: dionaea
    vendor: dionaea
  tags: js,network,smb,enum,os
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      var m = require("nuclei/smb");
      var c = new m.SMBClient();
      var response = c.ListSMBv2Metadata(Host, Port);
--- a/javascript/enumeration/smb/smb-version-detect.yaml
+++ b/javascript/enumeration/smb/smb-version-detect.yaml
@ -12,8 +12,11 @@ info:
    product: dionaea
    vendor: dionaea
  tags: js,network,smb,enum
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      let m = require("nuclei/smb");
      let c = new m.SMBClient();
      let response = c.ConnectSMBInfoMode(Host, Port);
--- a/javascript/enumeration/smb/smb2-capabilities.yaml
+++ b/javascript/enumeration/smb/smb2-capabilities.yaml
@ -14,8 +14,11 @@ info:
    product: dionaea
    vendor: dionaea
  tags: js,network,smb,enum
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      var m = require("nuclei/smb");
      var c = m.SMBClient();
      var response = c.ConnectSMBInfoMode(Host, Port);
--- a/javascript/enumeration/smb/smb2-server-time.yaml
+++ b/javascript/enumeration/smb/smb2-server-time.yaml
@ -15,8 +15,11 @@ info:
    product: dionaea
    vendor: dionaea
  tags: js,network,smb,enum
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      var m = require("nuclei/smb");
      var c = m.SMBClient();
      var response = c.ConnectSMBInfoMode(Host,Port);
--- a/javascript/misconfiguration/mysql/mysql-empty-password.yaml
+++ b/javascript/misconfiguration/mysql/mysql-empty-password.yaml
@ -13,10 +13,7 @@ info:

 javascript:
  - pre-condition: |
-      var m = require("nuclei/mysql");
-      var c = m.MySQLClient();
-      c.IsMySQL(Host, Port);
-
+      isPortOpen(Host,Port);
    code: |
      var m = require("nuclei/mysql");
      var c = m.MySQLClient();
--- a/javascript/misconfiguration/pgsql/pgsql-empty-password.yaml
+++ b/javascript/misconfiguration/pgsql/pgsql-empty-password.yaml
@ -13,8 +13,11 @@ info:
    max-request: 1
    shodan-query: "product:\"PostgreSQL\""
  tags: js,network,postgresql,authenticated
+
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      const postgres = require('nuclei/postgres');
      const client = new postgres.PGClient;
      const connected = client.Connect(Host, Port, User, Pass);
--- a/javascript/misconfiguration/pgsql/pgsql-extensions-rce.yaml
+++ b/javascript/misconfiguration/pgsql/pgsql-extensions-rce.yaml
@ -16,7 +16,9 @@ info:
    shodan-query: "product:\"PostgreSQL\""
  tags: postgresql,js,network,rce
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      const postgres = require('nuclei/postgres');
      const client = new postgres.PGClient;
      const collab = shurl
--- a/javascript/misconfiguration/smb/smb-anonymous-access.yaml
+++ b/javascript/misconfiguration/smb/smb-anonymous-access.yaml
@ -16,7 +16,9 @@ info:
    vendor: dionaea
  tags: js,network,smb,enum,misconfig
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      var m = require("nuclei/smb");
      var c = m.SMBClient();
      var response = c.ListShares(Host,Port,User,Pass);
--- a/javascript/misconfiguration/smb/smb-shares.yaml
+++ b/javascript/misconfiguration/smb/smb-shares.yaml
@ -16,7 +16,9 @@ info:
    vendor: dionaea
  tags: js,network,smb,enum
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      var m = require("nuclei/smb");
      var c = m.SMBClient();
      var response = c.ListShares(Host, Port, User, Pass);
--- a/javascript/misconfiguration/smb/smb-signing-not-required.yaml
+++ b/javascript/misconfiguration/smb/smb-signing-not-required.yaml
@ -17,7 +17,9 @@ info:
    vendor: dionaea
  tags: js,network,smb,enum
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      var m = require("nuclei/smb");
      var c = m.SMBClient();
      var response = c.ListSMBv2Metadata(Host, Port, User, Pass);
--- a/javascript/udp/detection/tftp-detect.yaml
+++ b/javascript/udp/detection/tftp-detect.yaml
@ -12,7 +12,9 @@ info:
    shodan-query: "port:69"
  tags: js,tftp,udp,network
 javascript:
-  - code: |
+  - pre-condition: |
+      isPortOpen(Host,Port);
+    code: |
      let packet = bytes.NewBuffer();
      let message = "1.txt"
      let data = message;