Merge pull request #1138 from projectdiscovery/backup-file
Added settings-php-files and more tagspatch-1
PD-Team
GitHub
commit
ca12c1fef7
|
|
@ -4,6 +4,7 @@ info:
|
||||||
name: OpenAPI
|
name: OpenAPI
|
||||||
author: pdteam
|
author: pdteam
|
||||||
severity: info
|
severity: info
|
||||||
|
tags: api
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- method: GET
|
- method: GET
|
||||||
|
|
|
||||||
|
|
@ -1,9 +1,10 @@
|
||||||
id: swagger-api
|
id: swagger-api
|
||||||
|
|
||||||
info:
|
info:
|
||||||
name: Swagger API
|
name: Public Swagger API
|
||||||
author: pd-team
|
author: pdteam
|
||||||
severity: info
|
severity: info
|
||||||
|
tags: api,swagger
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- method: GET
|
- method: GET
|
||||||
|
|
|
||||||
|
|
@ -4,6 +4,7 @@ info:
|
||||||
name: wadl file disclosure
|
name: wadl file disclosure
|
||||||
author: 0xrudra & manuelbua
|
author: 0xrudra & manuelbua
|
||||||
severity: info
|
severity: info
|
||||||
|
tags: api
|
||||||
|
|
||||||
# References:
|
# References:
|
||||||
# - https://github.com/dwisiswant0/wadl-dumper
|
# - https://github.com/dwisiswant0/wadl-dumper
|
||||||
|
|
|
||||||
|
|
@ -4,6 +4,7 @@ info:
|
||||||
name: wsdl-detect
|
name: wsdl-detect
|
||||||
author: jarijaas
|
author: jarijaas
|
||||||
severity: info
|
severity: info
|
||||||
|
tags: api
|
||||||
|
|
||||||
# This detects web services that have WSDL (https://www.w3.org/TR/wsdl/)
|
# This detects web services that have WSDL (https://www.w3.org/TR/wsdl/)
|
||||||
# For instance, SOAP services, such as: https://docs.microsoft.com/en-us/xamarin/xamarin-forms/data-cloud/web-services/asmx
|
# For instance, SOAP services, such as: https://docs.microsoft.com/en-us/xamarin/xamarin-forms/data-cloud/web-services/asmx
|
||||||
|
|
|
||||||
|
|
@ -0,0 +1,29 @@
|
||||||
|
id: settings-php-files
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: settings.php information disclosure
|
||||||
|
author: sheikhrishad
|
||||||
|
severity: medium
|
||||||
|
tags: backup
|
||||||
|
|
||||||
|
requests:
|
||||||
|
- method: GET
|
||||||
|
path:
|
||||||
|
- "{{BaseURL}}/settings.php.bak"
|
||||||
|
- "{{BaseURL}}/settings.php.dist"
|
||||||
|
- "{{BaseURL}}/settings.php.old"
|
||||||
|
- "{{BaseURL}}/settings.php.save"
|
||||||
|
- "{{BaseURL}}/settings.php.swp"
|
||||||
|
- "{{BaseURL}}/settings.php.txt"
|
||||||
|
|
||||||
|
matchers-condition: and
|
||||||
|
matchers:
|
||||||
|
- type: word
|
||||||
|
words:
|
||||||
|
- "DB_NAME"
|
||||||
|
- "DB"
|
||||||
|
condition: and
|
||||||
|
|
||||||
|
- type: status
|
||||||
|
status:
|
||||||
|
- 200
|
||||||
|
|
@ -4,6 +4,7 @@ info:
|
||||||
name: MySQL Dump Files
|
name: MySQL Dump Files
|
||||||
author: geeknik & @dwisiswant0
|
author: geeknik & @dwisiswant0
|
||||||
severity: medium
|
severity: medium
|
||||||
|
tags: backup
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- method: GET
|
- method: GET
|
||||||
|
|
|
||||||
|
|
@ -4,6 +4,7 @@ info:
|
||||||
name: Compressed Web File
|
name: Compressed Web File
|
||||||
author: Toufik Airane & @dwisiswant0
|
author: Toufik Airane & @dwisiswant0
|
||||||
severity: medium
|
severity: medium
|
||||||
|
tags: backup
|
||||||
|
|
||||||
requests:
|
requests:
|
||||||
- method: GET
|
- method: GET
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue