Merge pull request #905 from projectdiscovery/sftp-credentials-exposure

Adding SFTP credentials exposure

README.md

@@ -37,13 +37,10 @@ An overview of the nuclei template directory including number of templates assoc
 
 | Templates      | Counts                         | Templates       | Counts                          | Templates        | Counts                         |
 | -------------- | ------------------------------ | --------------- | ------------------------------- | ---------------- | ------------------------------ |
-| cves           | 200            | vulnerabilities | 92 | exposed-panels   | 74   |
-| exposures      | 47      | technologies    | 46      | misconfiguration | 43 |
 | workflows      | 21        | miscellaneous   | 12     | default-logins   | 10 |
 | exposed-tokens | 9 | dns             | 6               | fuzzing          | 4          |
 | helpers        | 2        | takeovers       | 1         | -                | -                              |
 
-**61 directories, 576 files**.
 
 </td>
 </tr>

exposures/configs/sftp-credentials-exposure.yaml

@@ -0,0 +1,24 @@
+id: sftp-credentials-exposure
+
+info:
+  name: SFTP credentials exposure
+  author: sheikhrishad
+  severity: medium
+  tags: config,ftp
+
+requests:
+  - method: GET
+    path:
+      - "{{BaseURL}}/sftp-config.json"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - "file_permissions"
+          - "extra_list_connections"
+        condition: and
+
+      - type: status
+        status:
+          - 200