removing unused files

2020-05-24 05:21:07 +00:00 · 2020-05-24 05:21:07 +00:00 · c5f8b8023f
parent 383f59f84a
commit c5f8b8023f
3 changed files with 0 additions and 70 deletions
--- a/basic-detections/general-xss.yaml
+++ b/basic-detections/general-xss.yaml
@ -1,19 +0,0 @@
-id: General XSS
-
-info:
-  name: General XSS
-  author: nadino
-  severity: medium
-
-requests:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
-    matchers:
-      - type: word
-        words:
-          - 'a''"><injectable>'
-        part: body
-      - type: dsl
-        dsl:
-        - 'contains(content_type,"html")'
--- a/noisy/general-tokens.yaml
+++ b/noisy/general-tokens.yaml
@ -1,32 +0,0 @@
-id: general-tokens
-
-#this will create a huge load of false positive
-
-info:
-  name: General Tokens
-  author: nadino
-  severity: medium
-
-requests:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
-    matchers:
-      - type: dsl
-        dsl:
-        - 'regex("TOKEN[\\-|_|A-Z0-9]*(\''|\")?(:|=)(\''|\")?[\\-|_|A-Z0-9]{10}",replace(toupper(body)," ",""))'                  #any TOKEN word
-        - 'regex("API[\\-|_|A-Z0-9]*(\''|\")?(:|=)(\''|\")?[\\-|_|A-Z0-9]{10}",replace(toupper(body)," ",""))'                    #any API word
-        - 'regex("KEY[\\-|_|A-Z0-9]*(\''|\")?(:|=)(\''|\")?[\\-|_|A-Z0-9]{10}",replace(toupper(body)," ",""))'                    #any KEY word
-        - 'regex("SECRET[\\-|_|A-Z0-9]*(\''|\")?(:|=)(\''|\")?[\\-|_|A-Z0-9]{10}",replace(toupper(body)," ",""))'                 #any SECRET word
-        - 'regex("AUTHORIZATION[\\-|_|A-Z0-9]*(\''|\")?(:|=)(\''|\")?[\\-|_|A-Z0-9]{10}",replace(toupper(body)," ",""))'          #any AUTHORIZATION word
-        - 'regex("PASSWORD[\\-|_|A-Z0-9]*(\''|\")?(:|=)(\''|\")?[\\-|_|A-Z0-9]{10}",replace(toupper(body)," ",""))'               #any PASSWORD word
-    extractors:
-      - type: regex
-        part: body
-        regex:
-          - "(T|t)(O|o)(K|k)(E|e)(N|n)[\\-|_|A-Za-z0-9]*(\''|\")?( )*(:|=)+( )*(\''|\")?[ 0-9A-Za-z\\-_]+(\''|\")?"
-          - "(A|a)(P|p)(Ii)[\\-|_|A-Za-z0-9]*(\''|\")?( )*(:|=)( )*(\''|\")?[ 0-9A-Za-z\\-_]+(\''|\")?"
-          - "(K|k)(E|e)(Y|y)[\\-|_|A-Za-z0-9]*(\''|\")?( )*(:|=)( )*(\''|\")?[ 0-9A-Za-z\\-_]+(\''|\")?"
-          - "(S|s)(E|e)(C|c)(R|r)(E|e)(T|t)[\\-|_|A-Za-z0-9]*(\''|\")?( )*(:|=)( )*(\''|\")?[ 0-9A-Za-z\\-_]+(\''|\")?"
-          - "(A|a)(U|u)(T|t)(H|h)(O|o)(R|r)(I|i)(Z|z)(A|a)(T|t)(I|i)(O|o)(N|n)[\\-|_|A-Za-z0-9]*(\''|\")?( )*(:|=)( )*(\''|\")?[ 0-9A-Za-z\\-_]+(\''|\")?"
-          - "(P|p)(A|a)(S|s)(S|s)(W|w)(O|o)(R|r)(D|d)[\\-|_|A-Za-z0-9]*(\''|\")?( )*(:|=)( )*(\''|\")?[ 0-9A-Za-z\\-_]+(\''|\")?"
--- a/noisy/general-xss.yaml
+++ b/noisy/general-xss.yaml
@ -1,19 +0,0 @@
-id: General XSS
-
-info:
-  name: General XSS
-  author: nadino
-  severity: medium
-
-requests:
-  - method: GET
-    path:
-      - "{{BaseURL}}"
-    matchers:
-      - type: word
-        words:
-          - 'a''"><injectable>'
-        part: body
-      - type: dsl
-        dsl:
-        - 'contains(content_type,"html")'