From bcd66c74668a29214d3c9bed7e3683a626097b11 Mon Sep 17 00:00:00 2001 From: pussycat0x <65701233+pussycat0x@users.noreply.github.com> Date: Fri, 17 Mar 2023 17:53:40 +0530 Subject: [PATCH 1/2] Splash Rendering Service - Detect --- technologies/splash-rendering-service.yaml | 35 ++++++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 technologies/splash-rendering-service.yaml diff --git a/technologies/splash-rendering-service.yaml b/technologies/splash-rendering-service.yaml new file mode 100644 index 0000000000..f49fb8ae9a --- /dev/null +++ b/technologies/splash-rendering-service.yaml @@ -0,0 +1,35 @@ +id: splash-rendering-service + +info: + name: Splash Rendering Service - Detect + author: pussycat0x + severity: info + reference: + - https://github.com/scrapinghub/splash + metadata: + verified: "true" + shodan-query: title:"Splash" + hunter-query: web.title="Splash" && header="TwistedWeb" + tags: splash,tech,detect + +requests: + - method: GET + path: + - "{{BaseURL}}" + + matchers-condition: and + matchers: + - type: word + part: body + words: + - "Splash" + + - type: status + status: + - 200 + + extractors: + - type: regex + part: body + regex: + - "Splash v([0-9.]+)" \ No newline at end of file From 9e587689427c1709b3206497628ecb6edd7e91fe Mon Sep 17 00:00:00 2001 From: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com> Date: Thu, 23 Mar 2023 17:28:58 +0530 Subject: [PATCH 2/2] updated matcher & info --- technologies/splash-rendering-service.yaml | 11 +++++++++-- 1 file changed, 9 insertions(+), 2 deletions(-) diff --git a/technologies/splash-rendering-service.yaml b/technologies/splash-rendering-service.yaml index f49fb8ae9a..8885f84f13 100644 --- a/technologies/splash-rendering-service.yaml +++ b/technologies/splash-rendering-service.yaml @@ -4,13 +4,18 @@ info: name: Splash Rendering Service - Detect author: pussycat0x severity: info + description: Splash is a javascript rendering service with an HTTP API. It's a lightweight browser with an HTTP API, implemented in Python 3 using Twisted and QT5. reference: - https://github.com/scrapinghub/splash + classification: + cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N + cvss-score: 0.0 + cwe-id: CWE-200 metadata: verified: "true" shodan-query: title:"Splash" hunter-query: web.title="Splash" && header="TwistedWeb" - tags: splash,tech,detect + tags: tech,splash,detect requests: - method: GET @@ -23,6 +28,8 @@ requests: part: body words: - "<title>Splash" + - "splash.loadExample" + condition: and - type: status status: @@ -32,4 +39,4 @@ requests: - type: regex part: body regex: - - "Splash v([0-9.]+)" \ No newline at end of file + - "Splash v([0-9.]+)"