Merge pull request #2869 from securitytest3r/master

Added Lansweeper login page and unauthenticated instance detection

exposed-panels/lansweeper-login.yaml

@@ -0,0 +1,26 @@
+id: lansweeper-login
+
+info:
+  name: Lansweeper Login
+  author: divya_mudgal
+  severity: info
+  tags: lansweeper,tech,panel
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/login.aspx"
+      - "{{BaseURL}}/favicon.ico"
+
+    stop-at-first-match: true
+    matchers-condition: or
+    matchers:
+      - type: word
+        name: login
+        words:
+          - "Lansweeper - Login"
+
+      - type: dsl
+        name: favicon
+        dsl:
+          - "status_code==200 && (\"1847799946\" == mmh3(base64_py(body)))"

misconfiguration/unauthenticated-lansweeper.yaml

@@ -0,0 +1,17 @@
+id: unauthenticated-lansweeper
+
+info:
+  name: Unauthenticated Lansweeper Instance
+  author: divya_mudgal
+  severity: high
+  tags: lansweeper,unauth
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/Default.aspx"
+
+    matchers:
+      - type: word
+        words:
+          - "Main page - Lansweeper"