From bcd66c74668a29214d3c9bed7e3683a626097b11 Mon Sep 17 00:00:00 2001
From: pussycat0x <65701233+pussycat0x@users.noreply.github.com>
Date: Fri, 17 Mar 2023 17:53:40 +0530
Subject: [PATCH 1/2] Splash Rendering Service - Detect
---
technologies/splash-rendering-service.yaml | 35 ++++++++++++++++++++++
1 file changed, 35 insertions(+)
create mode 100644 technologies/splash-rendering-service.yaml
diff --git a/technologies/splash-rendering-service.yaml b/technologies/splash-rendering-service.yaml
new file mode 100644
index 0000000000..f49fb8ae9a
--- /dev/null
+++ b/technologies/splash-rendering-service.yaml
@@ -0,0 +1,35 @@
+id: splash-rendering-service
+
+info:
+ name: Splash Rendering Service - Detect
+ author: pussycat0x
+ severity: info
+ reference:
+ - https://github.com/scrapinghub/splash
+ metadata:
+ verified: "true"
+ shodan-query: title:"Splash"
+ hunter-query: web.title="Splash" && header="TwistedWeb"
+ tags: splash,tech,detect
+
+requests:
+ - method: GET
+ path:
+ - "{{BaseURL}}"
+
+ matchers-condition: and
+ matchers:
+ - type: word
+ part: body
+ words:
+ - "
Splash"
+
+ - type: status
+ status:
+ - 200
+
+ extractors:
+ - type: regex
+ part: body
+ regex:
+ - "Splash v([0-9.]+)"
\ No newline at end of file
From 9e587689427c1709b3206497628ecb6edd7e91fe Mon Sep 17 00:00:00 2001
From: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com>
Date: Thu, 23 Mar 2023 17:28:58 +0530
Subject: [PATCH 2/2] updated matcher & info
---
technologies/splash-rendering-service.yaml | 11 +++++++++--
1 file changed, 9 insertions(+), 2 deletions(-)
diff --git a/technologies/splash-rendering-service.yaml b/technologies/splash-rendering-service.yaml
index f49fb8ae9a..8885f84f13 100644
--- a/technologies/splash-rendering-service.yaml
+++ b/technologies/splash-rendering-service.yaml
@@ -4,13 +4,18 @@ info:
name: Splash Rendering Service - Detect
author: pussycat0x
severity: info
+ description: Splash is a javascript rendering service with an HTTP API. It's a lightweight browser with an HTTP API, implemented in Python 3 using Twisted and QT5.
reference:
- https://github.com/scrapinghub/splash
+ classification:
+ cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
+ cvss-score: 0.0
+ cwe-id: CWE-200
metadata:
verified: "true"
shodan-query: title:"Splash"
hunter-query: web.title="Splash" && header="TwistedWeb"
- tags: splash,tech,detect
+ tags: tech,splash,detect
requests:
- method: GET
@@ -23,6 +28,8 @@ requests:
part: body
words:
- "Splash"
+ - "splash.loadExample"
+ condition: and
- type: status
status:
@@ -32,4 +39,4 @@ requests:
- type: regex
part: body
regex:
- - "Splash v([0-9.]+)"
\ No newline at end of file
+ - "Splash v([0-9.]+)"