From f82f9701130e28b5f7377365b0921f8ae5efc147 Mon Sep 17 00:00:00 2001
From: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com>
Date: Mon, 9 Oct 2023 15:18:45 +0530
Subject: [PATCH] Create bitwarden-vault-panel.yaml

---
 .../exposed-panels/bitwarden-vault-panel.yaml | 35 +++++++++++++++++++
 1 file changed, 35 insertions(+)
 create mode 100644 http/exposed-panels/bitwarden-vault-panel.yaml

diff --git a/http/exposed-panels/bitwarden-vault-panel.yaml b/http/exposed-panels/bitwarden-vault-panel.yaml
new file mode 100644
index 0000000000..eeaee6964a
--- /dev/null
+++ b/http/exposed-panels/bitwarden-vault-panel.yaml
@@ -0,0 +1,35 @@
+id: bitwarden-vault-panel
+
+info:
+  name: Bitwarden Web Vault Login Panel - Detect
+  author: ritikchaddha
+  severity: info
+  reference:
+    - https://bitwarden.com/?utm_source=google&utm_medium=cpc&utm_campaign=AW_ALL_NU_CL_Bitwarden_en_GSN_DTMB_Brand-Login_KW:Brand-Login_Consolidated&utm_content=646427936792&utm_term=bitwarden%20vault%20login|kwd-826827349840&hsa_acc=2567950947&hsa_cam=19621984700&hsa_grp=145977914135&hsa_ad=646427936792&hsa_src=g&hsa_tgt=kwd-826827349840&hsa_kw=bitwarden%20vault%20login&hsa_mt=e&hsa_net=adwords&hsa_ver=3&gad=1&gclid=Cj0KCQjwpompBhDZARIsAFD_Fp-07Mni-xzuKd5Ewi6I7qzRTdZOYSxMsMVvKVWhGm5qg2KUiY2Z7SQaAvSIEALw_wcB
+  metadata:
+    max-request: 1
+    verified: true
+    shodan-query: title:"Bitwarden Web Vault"
+  tags: panel,bitwarden,vault,detect
+
+http:
+  - method: GET
+    path:
+      - "{{BaseURL}}"
+      - "{{BaseURL}}/#/login"
+
+    stop-at-first-match: true
+    host-redirects: true
+    max-redirects: 2
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - 'Bitwarden Web Vault</title>'
+          - 'alt="Bitwarden'
+        condition: or
+
+      - type: status
+        status:
+          - 200