From 75a8e2b11db9301a4df6890712cbf620ce11092a Mon Sep 17 00:00:00 2001 From: Arman <65326024+tess-ss@users.noreply.github.com> Date: Tue, 13 Sep 2022 15:07:23 -0400 Subject: [PATCH 1/3] Create footprints.yaml --- technologies/footprints.yaml | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+) create mode 100644 technologies/footprints.yaml diff --git a/technologies/footprints.yaml b/technologies/footprints.yaml new file mode 100644 index 0000000000..7646aaff1c --- /dev/null +++ b/technologies/footprints.yaml @@ -0,0 +1,29 @@ +id: footprints-panel-detection + +info: + name: footprints login panel + author: tess + severity: info + tags: tech,panel,misc + +requests: + - method: GET + path: + - '{{BaseURL}}/MRcgi/MRlogin.pl' + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + part: body + words: + - 'User ID:' + - 'Password:' + condition: and + + - type: word + part: header + words: + - 'text/html' From 51eb8f00094887456d550c1f95315a7100193e7c Mon Sep 17 00:00:00 2001 From: Arman <65326024+tess-ss@users.noreply.github.com> Date: Tue, 13 Sep 2022 15:20:18 -0400 Subject: [PATCH 2/3] Update footprints.yaml --- technologies/footprints.yaml | 5 ----- 1 file changed, 5 deletions(-) diff --git a/technologies/footprints.yaml b/technologies/footprints.yaml index 7646aaff1c..314518b336 100644 --- a/technologies/footprints.yaml +++ b/technologies/footprints.yaml @@ -22,8 +22,3 @@ requests: - 'User ID:' - 'Password:' condition: and - - - type: word - part: header - words: - - 'text/html' From bf531cfb5c8ab7bd3d9a0943b6ac1f1609a4c41b Mon Sep 17 00:00:00 2001 From: Dhiyaneshwaran Date: Wed, 14 Sep 2022 11:56:21 +0530 Subject: [PATCH 3/3] Update and rename technologies/footprints.yaml to exposed-panels/footprints-panel.yaml --- exposed-panels/footprints-panel.yaml | 29 ++++++++++++++++++++++++++++ technologies/footprints.yaml | 24 ----------------------- 2 files changed, 29 insertions(+), 24 deletions(-) create mode 100644 exposed-panels/footprints-panel.yaml delete mode 100644 technologies/footprints.yaml diff --git a/exposed-panels/footprints-panel.yaml b/exposed-panels/footprints-panel.yaml new file mode 100644 index 0000000000..872d266be5 --- /dev/null +++ b/exposed-panels/footprints-panel.yaml @@ -0,0 +1,29 @@ +id: footprints-panel + +info: + name: footprints panel + author: tess + severity: info + metadata: + verified: true + shodan-query: title:"FootPrints Service Core Login" + tags: tech,panel,footprints + +requests: + - method: GET + path: + - '{{BaseURL}}/MRcgi/MRlogin.pl' + - '{{BaseURL}}/MRcgi/MRentrancePage.pl' + + stop-at-first-match: true + + matchers-condition: and + matchers: + - type: word + part: body + words: + - 'FootPrints Service Core Login' + + - type: status + status: + - 200 diff --git a/technologies/footprints.yaml b/technologies/footprints.yaml deleted file mode 100644 index 314518b336..0000000000 --- a/technologies/footprints.yaml +++ /dev/null @@ -1,24 +0,0 @@ -id: footprints-panel-detection - -info: - name: footprints login panel - author: tess - severity: info - tags: tech,panel,misc - -requests: - - method: GET - path: - - '{{BaseURL}}/MRcgi/MRlogin.pl' - matchers-condition: and - matchers: - - type: status - status: - - 200 - - - type: word - part: body - words: - - 'User ID:' - - 'Password:' - condition: and