From 0dcd2d1e31aa77efb5b5b06fdc4eb0723bb7abbd Mon Sep 17 00:00:00 2001 From: Arafat Ansari <54571841+arafatansari@users.noreply.github.com> Date: Thu, 15 Sep 2022 00:03:08 +0530 Subject: [PATCH 1/6] Create iSpyConnect-detect.yaml --- exposed-panels/iSpyConnect-detect.yaml | 26 ++++++++++++++++++++++++++ 1 file changed, 26 insertions(+) create mode 100644 exposed-panels/iSpyConnect-detect.yaml diff --git a/exposed-panels/iSpyConnect-detect.yaml b/exposed-panels/iSpyConnect-detect.yaml new file mode 100644 index 0000000000..26d3b1fbd2 --- /dev/null +++ b/exposed-panels/iSpyConnect-detect.yaml @@ -0,0 +1,26 @@ +id: iSpyConnect-detect + +info: + name: iSpyConnect - Detect + author: arafatansari + severity: info + metadata: + shodan-query: http.html:"iSpy" + verified: true + tags: iSpy,panel + +requests: + - raw: + - | + GET / HTTP/1.1 + Host: {{Hostname}} + + matchers-condition: and + matchers: + - type: status + status: + - 200 + + - type: word + words: + - 'iSpy is running' From 374fb0072ffa17cae08fd8be51f0042d03a8e154 Mon Sep 17 00:00:00 2001 From: Arafat Ansari <54571841+arafatansari@users.noreply.github.com> Date: Thu, 15 Sep 2022 00:08:12 +0530 Subject: [PATCH 3/6] Update iSpyConnect-detect.yaml --- exposed-panels/iSpyConnect-detect.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/exposed-panels/iSpyConnect-detect.yaml b/exposed-panels/iSpyConnect-detect.yaml index 26d3b1fbd2..51079b7cf5 100644 --- a/exposed-panels/iSpyConnect-detect.yaml +++ b/exposed-panels/iSpyConnect-detect.yaml @@ -23,4 +23,4 @@ requests: - type: word words: - - 'iSpy is running' + - 'iSpy is running' From ea77b63f3c16a1ead555072ee143ee8e902f5cf2 Mon Sep 17 00:00:00 2001 From: Dhiyaneshwaran Date: Thu, 15 Sep 2022 07:02:32 +0530 Subject: [PATCH 4/6] Update and rename exposed-panels/iSpyConnect-detect.yaml to technologies/ispyconnect-detect.yaml --- .../ispyconnect-detect.yaml | 26 ++++++++++++------- 1 file changed, 16 insertions(+), 10 deletions(-) rename exposed-panels/iSpyConnect-detect.yaml => technologies/ispyconnect-detect.yaml (59%) diff --git a/exposed-panels/iSpyConnect-detect.yaml b/technologies/ispyconnect-detect.yaml similarity index 59% rename from exposed-panels/iSpyConnect-detect.yaml rename to technologies/ispyconnect-detect.yaml index 51079b7cf5..21375db646 100644 --- a/exposed-panels/iSpyConnect-detect.yaml +++ b/technologies/ispyconnect-detect.yaml @@ -1,4 +1,4 @@ -id: iSpyConnect-detect +id: ispyconnect-detect info: name: iSpyConnect - Detect @@ -7,20 +7,26 @@ info: metadata: shodan-query: http.html:"iSpy" verified: true - tags: iSpy,panel + tags: ispy,tech requests: - - raw: - - | - GET / HTTP/1.1 - Host: {{Hostname}} + - method: GET + path: + - '{{BaseURL}}' matchers-condition: and matchers: + - type: word + part: body + words: + - 'iSpy is running' + condition: and + + - type: word + part: header + words: + - 'Server: iSpy' + - type: status status: - 200 - - - type: word - words: - - 'iSpy is running' From 20d46127e39826681243313669c16eb1fbbd21ae Mon Sep 17 00:00:00 2001 From: Dhiyaneshwaran Date: Thu, 15 Sep 2022 07:03:04 +0530 Subject: [PATCH 5/6] Update ispyconnect-detect.yaml --- technologies/ispyconnect-detect.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/technologies/ispyconnect-detect.yaml b/technologies/ispyconnect-detect.yaml index 21375db646..22419ed007 100644 --- a/technologies/ispyconnect-detect.yaml +++ b/technologies/ispyconnect-detect.yaml @@ -5,8 +5,8 @@ info: author: arafatansari severity: info metadata: - shodan-query: http.html:"iSpy" verified: true + shodan-query: http.html:"iSpy" tags: ispy,tech requests: From b8bc401ad759965e865d1b14cc5cb137e2984048 Mon Sep 17 00:00:00 2001 From: Prince Chaddha Date: Thu, 15 Sep 2022 15:57:41 +0530 Subject: [PATCH 6/6] Update ispyconnect-detect.yaml --- technologies/ispyconnect-detect.yaml | 9 ++------- 1 file changed, 2 insertions(+), 7 deletions(-) diff --git a/technologies/ispyconnect-detect.yaml b/technologies/ispyconnect-detect.yaml index 22419ed007..6e4df2ff47 100644 --- a/technologies/ispyconnect-detect.yaml +++ b/technologies/ispyconnect-detect.yaml @@ -7,26 +7,21 @@ info: metadata: verified: true shodan-query: http.html:"iSpy" - tags: ispy,tech + tags: tech,ispy requests: - method: GET path: - '{{BaseURL}}' - matchers-condition: and + matchers-condition: or matchers: - type: word part: body words: - 'iSpy is running' - condition: and - type: word part: header words: - 'Server: iSpy' - - - type: status - status: - - 200