diff --git a/exposures/logs/access-log.yaml b/exposures/logs/access-log.yaml index bb9debe657..16c3349ad5 100644 --- a/exposures/logs/access-log.yaml +++ b/exposures/logs/access-log.yaml @@ -4,7 +4,7 @@ info: name: Publicly accessible access-log file author: sheikhrishad severity: low - tags: log + tags: logs requests: - method: GET diff --git a/exposures/logs/circarlife-system-log.yaml b/exposures/logs/circarlife-system-log.yaml index 6086be12c1..5567438fa5 100644 --- a/exposures/logs/circarlife-system-log.yaml +++ b/exposures/logs/circarlife-system-log.yaml @@ -6,7 +6,7 @@ info: description: CirCarLife is an internet-connected electric vehicle charging station reference: https://circontrol.com/ severity: medium - tags: scada,circontrol,circarlife,log + tags: scada,circontrol,circarlife,logs requests: - method: GET diff --git a/exposures/logs/elmah-log-file.yaml b/exposures/logs/elmah-log-file.yaml index a1b7841969..7d4a53f33c 100644 --- a/exposures/logs/elmah-log-file.yaml +++ b/exposures/logs/elmah-log-file.yaml @@ -4,7 +4,7 @@ info: name: elmah.axd Disclosure author: shine severity: medium - tags: log,exposure + tags: logs,exposure requests: - method: GET diff --git a/exposures/logs/error-logs.yaml b/exposures/logs/error-logs.yaml index 0706aed398..f001421a85 100644 --- a/exposures/logs/error-logs.yaml +++ b/exposures/logs/error-logs.yaml @@ -3,7 +3,7 @@ info: name: common error log files author: geeknik & daffainfo severity: low - tags: log,exposure + tags: logs,exposure requests: - method: GET diff --git a/exposures/logs/laravel-log-file.yaml b/exposures/logs/laravel-log-file.yaml index 7ec45fa9ac..bcd36d36e1 100644 --- a/exposures/logs/laravel-log-file.yaml +++ b/exposures/logs/laravel-log-file.yaml @@ -6,7 +6,7 @@ info: severity: high description: The log file of this Laravel web app might reveal details on the inner workings of the app, possibly even tokens, credentials or personal information. reference: https://laravel.com/docs/master/logging - tags: laravel,log,exposure + tags: laravel,logs,exposure requests: - method: GET diff --git a/exposures/logs/laravel-telescope.yaml b/exposures/logs/laravel-telescope.yaml index 1b07954008..50a8bea513 100644 --- a/exposures/logs/laravel-telescope.yaml +++ b/exposures/logs/laravel-telescope.yaml @@ -6,7 +6,7 @@ info: description: Telescope provides insight into the requests coming into your application, exceptions, log entries, database queries, queued jobs, mail, notifications, cache operations, scheduled tasks, variable dumps, and more. reference: https://laravel.com/docs/8.x/telescope severity: medium - tags: laravel,disclosure,log + tags: laravel,disclosure,logs requests: - method: GET diff --git a/exposures/logs/npm-log-file.yaml b/exposures/logs/npm-log-file.yaml index b93991f83a..da4d1d512e 100644 --- a/exposures/logs/npm-log-file.yaml +++ b/exposures/logs/npm-log-file.yaml @@ -4,7 +4,7 @@ info: name: Publicly accessible NPM Log file author: sheikhrishad severity: low - tags: npm,log,exposure + tags: npm,logs,exposure requests: - method: GET diff --git a/exposures/logs/oracle-ebs-sqllog-disclosure.yaml b/exposures/logs/oracle-ebs-sqllog-disclosure.yaml index d357b1766c..c98779e230 100644 --- a/exposures/logs/oracle-ebs-sqllog-disclosure.yaml +++ b/exposures/logs/oracle-ebs-sqllog-disclosure.yaml @@ -4,7 +4,7 @@ info: name: Oracle EBS SQL Log Disclosure author: dhiyaneshDk severity: medium - tags: oracle,ebs,log,exposure + tags: oracle,ebs,logs,exposure reference: https://the-infosec.com/2017/03/29/do-you-know-what-your-erp-is-telling-us/ requests: diff --git a/exposures/logs/rails-debug-mode.yaml b/exposures/logs/rails-debug-mode.yaml index 6e7e2494cf..41809550db 100644 --- a/exposures/logs/rails-debug-mode.yaml +++ b/exposures/logs/rails-debug-mode.yaml @@ -4,7 +4,7 @@ info: name: Rails Debug Mode Enabled author: pdteam severity: medium - tags: log,rails,exposure + tags: logs,rails,exposure requests: - method: GET diff --git a/exposures/logs/squid-analysis-report-generator.yaml b/exposures/logs/squid-analysis-report-generator.yaml index f6dc442d14..9e5f2e8919 100644 --- a/exposures/logs/squid-analysis-report-generator.yaml +++ b/exposures/logs/squid-analysis-report-generator.yaml @@ -1,4 +1,5 @@ id: squid-analysis-report-generator + info: name: Squid Analysis Report Generator author: geeknik @@ -26,6 +27,7 @@ requests: - "Daily reports" - "FILE/PERIOD" condition: or + extractors: - type: regex part: body diff --git a/exposures/logs/struts-debug-mode.yaml b/exposures/logs/struts-debug-mode.yaml index e95c21541c..9a8b14dbe7 100644 --- a/exposures/logs/struts-debug-mode.yaml +++ b/exposures/logs/struts-debug-mode.yaml @@ -4,7 +4,7 @@ info: name: Apache Struts setup in Debug-Mode author: pdteam severity: low - tags: log,struts,apache,exposure + tags: logs,struts,apache,exposure requests: - method: GET diff --git a/exposures/logs/trace-axd-detect.yaml b/exposures/logs/trace-axd-detect.yaml index 5b41abc997..d6e003387f 100644 --- a/exposures/logs/trace-axd-detect.yaml +++ b/exposures/logs/trace-axd-detect.yaml @@ -5,7 +5,7 @@ info: author: dhiyaneshDK severity: low reference: https://www.rapid7.com/db/vulnerabilities/spider-asp-dot-net-trace-axd/ - tags: log,asp,exposure + tags: logs,asp,exposure requests: - method: GET