Merge branch 'projectdiscovery:master' into master

.new-additions

@@ -1,3 +1,5 @@
+exposed-panels/3cx-phone-management-panel.yaml
+exposed-panels/3cx-phone-webclient-management-panel.yaml
 technologies/kubernetes/etcd/etcd-keys.yaml
 technologies/kubernetes/kube-api/kube-api-deployments.yaml
 technologies/kubernetes/kube-api/kube-api-namespaces.yaml
@@ -12,3 +14,4 @@ technologies/kubernetes/kubelet/kubelet-metrics.yaml
 technologies/kubernetes/kubelet/kubelet-pods.yaml
 technologies/kubernetes/kubelet/kubelet-runningpods.yaml
 technologies/kubernetes/kubelet/kubelet-stats.yaml
+technologies/spring-detect.yaml

exposed-panels/3cx-phone-management-panel.yaml

@@ -0,0 +1,28 @@
+id: 3cx-phone-management-panel
+
+info:
+  name: 3CX Phone System Management Console Detect
+  author: idealphase
+  severity: info
+  reference:
+    - https://www.3cx.com/
+    - https://www.3cx.com/phone-system/
+    - https://medium.com/@frycos/pwning-3cx-phone-management-backends-from-the-internet-d0096339dd88
+  metadata:
+    shodan-query:
+      - http.title:"3CX Phone System Management Console"
+      - http.favicon.hash:970132176
+    google-query: intitle:"3CX Phone System Management Console"
+  tags: panel,3cx
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}'
+
+    matchers:
+      - type: word
+        words:
+          - "3CX Phone System Management Console"
+          - "Welcome to the 3CX Management Console"
+        condition: or

exposed-panels/3cx-phone-webclient-management-panel.yaml

@@ -0,0 +1,26 @@
+id: 3cx-phone-webclient-management-panel
+
+info:
+  name: 3CX Phone System Webclient Management Console
+  author: idealphase
+  severity: info
+  reference:
+    - https://www.3cx.com/phone-system/
+    - https://www.3cx.com/blog/unified-communications/client-apps/
+    - https://medium.com/@frycos/pwning-3cx-phone-management-backends-from-the-internet-d0096339dd88
+  metadata:
+    shodan-query: http.title:"3CX Webclient"
+    google-query: intitle:"3CX Webclient"
+  tags: panel,3cx
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}/webclient/'
+
+    matchers:
+      - type: word
+        words:
+          - " <title>3CX Webclient</title>"
+          - '<meta name="description" content="3CX">'
+        condition: or

technologies/favicon-detection.yaml

@@ -445,6 +445,8 @@ requests:
         name: "3cx-phone-system"
         dsl:
           - "status_code==200 && (\"970132176\" == mmh3(base64_py(body)))"
+          - "status_code==200 && (\"970132176\" == mmh3(base64_py(body)))"
+        condition: or
 
       - type: dsl
         name: "bluehost"

technologies/spring-detect.yaml

@@ -0,0 +1,28 @@
+id: spring-detect
+
+info:
+  name: Java Spring Detection
+  author: Adam Crosser
+  severity: info
+  reference:
+    - https://mkyong.com/spring-boot/spring-rest-error-handling-example/
+  tags: tech,java,spring
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/error"
+
+    redirects: true
+    max-redirects: 2
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - '"status":999'
+        case-insensitive: true
+
+      - type: status
+        status:
+          - 500