Commit Graph

468 Commits (main)

Author SHA1 Message Date
Icaro Torres 3b02b45a00
Create neo4j-neodash-configexposed.yaml
Detects the file config.json from Neo4j Neodash web application, it contains information about DB connection with Neo4J.
2024-06-24 13:49:57 -03:00
GitHub Action 00c08b64f3 Auto Template Signing [Thu Jun 20 10:15:50 UTC 2024] 🤖 2024-06-20 10:15:51 +00:00
Ritik Chaddha aa4b48714d
Merge pull request #10082 from projectdiscovery/fix-fp-ftpconfig
Update ftpconfig.yaml
2024-06-20 14:58:24 +05:30
GitHub Action 307fe13419 Auto Template Signing [Thu Jun 20 09:04:17 UTC 2024] 🤖 2024-06-20 09:04:17 +00:00
Ritik Chaddha 8472835bcf
Fix FP cakephp-config.yaml 2024-06-20 14:28:13 +05:30
Dhiyaneshwaran 2c96d316d7
Update ftpconfig.yaml 2024-06-20 14:22:11 +05:30
GitHub Action 0e5edf2541 Auto Template Signing [Wed Jun 12 15:41:04 UTC 2024] 🤖 2024-06-12 15:41:05 +00:00
Dhiyaneshwaran c81308329a
fix-fp 2024-06-12 18:01:33 +05:30
GitHub Action 3d255ddfdd Auto Template Signing [Sat Jun 8 16:02:16 UTC 2024] 🤖 2024-06-08 16:02:18 +00:00
GitHub Action f559aeaeb9 TemplateMan Update [Fri Jun 7 10:04:28 UTC 2024] 🤖 2024-06-07 10:04:29 +00:00
GitHub Action d5f6cc197c Auto Template Signing [Sun Jun 2 16:37:05 UTC 2024] 🤖 2024-06-02 16:37:06 +00:00
Ritik Chaddha 0e72f04734
Fix FN django-variables-exposed.yaml 2024-06-02 12:07:16 +05:30
GitHub Action e7b61d6662 Auto Template Signing [Sat Jun 1 19:25:56 UTC 2024] 🤖 2024-06-01 19:25:57 +00:00
Dhiyaneshwaran 2d875681b9
Fix FP netrc 2024-06-01 23:14:36 +05:30
GitHub Action 01128069d3 Auto Template Signing [Tue May 28 14:45:20 UTC 2024] 🤖 2024-05-28 14:45:20 +00:00
pussycat0x 903a5daaa5
Merge pull request #9867 from N0el4kLs/wechat-exposure-2
Create wechat-secret-key.yaml
2024-05-28 20:13:03 +05:30
N0el4kLs af00205a07 create: wechat-secret-key.yaml 2024-05-24 01:22:25 +08:00
GitHub Action 6efa0ced6f Auto Template Signing [Thu May 23 12:26:48 UTC 2024] 🤖 2024-05-23 12:26:49 +00:00
GitHub Action 0c4bce54ae Auto Template Signing [Thu May 23 12:19:25 UTC 2024] 🤖 2024-05-23 12:19:25 +00:00
Ritik Chaddha 762b36a2a9
Merge pull request #9861 from projectdiscovery/pussycat0x-patch-13
Update kyan-credential-exposure.yaml
2024-05-23 17:48:04 +05:30
Ritik Chaddha 7895921867
Update kyan-credential-exposure.yaml 2024-05-23 17:45:15 +05:30
Ritik Chaddha d5c2203079
Update robomongo-credential.yaml 2024-05-23 17:44:44 +05:30
pussycat0x 2a36cb0922
Update kyan-credential-exposure.yaml 2024-05-23 17:34:29 +05:30
pussycat0x 33edf377cd
Update robomongo-credential.yaml 2024-05-23 17:33:57 +05:30
GitHub Action c536c55df8 Auto Template Signing [Thu May 23 05:49:19 UTC 2024] 🤖 2024-05-23 05:49:20 +00:00
pussycat0x e531e88478
Merge pull request #9838 from kazet/inreasing-severity
Increasing severity of elmah logs exposure that can lead to session hijacking
2024-05-23 11:17:07 +05:30
Krzysztof Zając fe388f7da9 Increasing severity of elmah logs exposure that can lead to session hijacking 2024-05-21 09:23:48 +02:00
M. Dehghani 935f507907
Update sql-server-dump.yaml 2024-05-11 13:55:21 +03:30
M. Dehghani f7c6047f13
Add sql server backup exposure 2024-05-11 13:48:32 +03:30
GitHub Action 2b6b55cdd9 Auto Template Signing [Mon May 6 16:41:31 UTC 2024] 🤖 2024-05-06 16:41:31 +00:00
Prince Chaddha 18ec2125a4
Update settings-php-files.yaml 2024-05-06 17:35:26 +05:30
GitHub Action 02f7ca3d98 Auto Template Signing [Tue Apr 23 10:06:08 UTC 2024] 🤖 2024-04-23 10:06:09 +00:00
Dhiyaneshwaran a55392d147
Merge pull request #9321 from Michal-Mikolas/htdeployment
.htdeployment - files tree cache file
2024-04-17 18:05:31 +05:30
Dhiyaneshwaran aea53a5dc3
Update and rename htdeployment.yaml to ht-deployment.yaml 2024-04-17 17:54:00 +05:30
GitHub Action 23b41faacf Auto Template Signing [Tue Apr 16 06:19:30 UTC 2024] 🤖 2024-04-16 06:19:31 +00:00
Dhiyaneshwaran 4f8d6b273b
Merge pull request #9567 from righettod/redfish_add
Add detection of Redfish API.
2024-04-16 11:41:29 +05:30
Ritik Chaddha 8040fc22f9
updated matchers 2024-04-15 13:23:59 +05:30
GitHub Action 362e3a389c Auto Template Signing [Fri Apr 12 10:58:46 UTC 2024] 🤖 2024-04-12 10:58:47 +00:00
Ice3man a63774c77e feat: convert paths with lots of elements to payloads 2024-04-12 16:01:51 +05:30
Dominique RIGHETTO a750137dc6
Add files via upload 2024-04-12 09:48:55 +02:00
GitHub Action fa3da9dffa Auto Template Signing [Thu Apr 11 06:41:10 UTC 2024] 🤖 2024-04-11 06:41:11 +00:00
Dhiyaneshwaran 8666201df8
minor update 2024-04-11 11:48:23 +05:30
Ritik Chaddha c80a6d4bca
Update and rename exposed-aspnet-soap-webservices-asmx.yaml to aspnet-soap-webservices-asmx.yaml 2024-04-11 10:36:12 +05:30
Dominique RIGHETTO 7828baaeba
Add files via upload 2024-04-09 16:39:16 +02:00
Prince Chaddha 51db5ea193 Revert "TemplateMan Update [Mon Apr 8 11:30:07 UTC 2024] 🤖"
This reverts commit 433dda4ae5.
2024-04-08 17:04:33 +05:30
GitHub Action 433dda4ae5 TemplateMan Update [Mon Apr 8 11:30:07 UTC 2024] 🤖 2024-04-08 11:30:08 +00:00
Prince Chaddha c25af29a62
Delete http/exposures/logs/php-debug-bar.yaml 2024-04-05 10:33:48 +05:30
Prince Chaddha 6ed631f48f
Updated matcher 2024-03-28 13:52:14 +05:30
GitHub Action a7c488e65f Auto Template Signing [Thu Mar 28 06:36:17 UTC 2024] 🤖 2024-03-28 06:36:17 +00:00
Dhiyaneshwaran 1f49a12db7
Merge pull request #9284 from Michal-Mikolas/deployment-ini
deployment.ini - configuration file with FTP credentials exposure
2024-03-28 12:04:01 +05:30
Ritik Chaddha 04c1d76fed
updated matchers 2024-03-28 00:19:28 +05:30
GitHub Action d62f95fce6 Auto Template Signing [Mon Mar 25 11:57:16 UTC 2024] 🤖 2024-03-25 11:57:17 +00:00
GitHub Action c491aa6724 TemplateMan Update [Sat Mar 23 09:28:19 UTC 2024] 🤖 2024-03-23 09:28:20 +00:00
Dhiyaneshwaran 0cd4e5a335
Update and rename drupal-install.yaml to drupal-install.yaml 2024-03-21 13:11:35 +05:30
pussycat0x b1b540179a
Update drupal-install.yaml 2024-03-21 13:08:19 +05:30
GitHub Action cbf2c2568d Auto Template Signing [Wed Mar 20 08:13:55 UTC 2024] 🤖 2024-03-20 08:13:55 +00:00
Dhiyaneshwaran f162560bc1
Merge pull request #9333 from Michal-Mikolas/generic-db
generic-db: Check for publicly accessible SQLite database files
2024-03-20 13:41:39 +05:30
Dhiyaneshwaran cc8ee3aa0f
minor update 2024-03-20 13:38:58 +05:30
Ritik Chaddha 6bd7a9e020
updated with path variable 2024-03-20 12:51:44 +05:30
Ritik Chaddha 717075e5b3
Update generic-db.yaml 2024-03-20 09:33:12 +05:30
GitHub Action 2ede6795a6 Auto Template Signing [Tue Mar 19 16:40:41 UTC 2024] 🤖 2024-03-19 16:40:42 +00:00
Prince Chaddha b9a4f8433e reverted bruteforce tags to fuzz 2024-03-19 20:50:31 +05:30
Michal Mikolas db3ccee4aa generic-db: Improved SQLite file signature matcher to match exactly beginning of the document. 2024-03-18 22:51:49 +01:00
Michal Mikolas d81a235f97 generic-db: Added more exact matchers to make sure the exposured file is really SQLite file. 2024-03-18 21:37:49 +01:00
Michal Mikolas 746631b37f generic-db: Added checking of SQLite database files exposure. 2024-03-13 13:12:00 +01:00
Michal Mikolas 23a968d819 htdeployment: Improved matchers, lowering false positive chance (by added negative '<html' condition). 2024-03-13 09:44:22 +01:00
Michal Mikolas ce388acf79 deployment-ini: Added 'FTP Deployment' configuration file exposure. 2024-03-12 17:39:09 +01:00
Michal Mikolas 457fe56c2f htdeployment: Added '.htdeployment' cache file exposure template. 2024-03-12 17:13:27 +01:00
GitHub Action 962bed735b Auto Template Signing [Wed Mar 6 09:19:19 UTC 2024] 🤖 2024-03-06 09:19:19 +00:00
pussycat0x b5632592d3
Update okta-api-token.yaml 2024-03-06 14:44:38 +05:30
Dhiyaneshwaran e6875009f1 Final Addition 2024-03-06 14:12:01 +05:30
Dhiyaneshwaran 27ead949cf
Merge branch 'main' into add-missing-token 2024-03-04 22:50:45 +05:30
GitHub Action 8931c00fa3 Auto Template Signing [Mon Mar 4 09:35:31 UTC 2024] 🤖 2024-03-04 09:35:32 +00:00
GitHub Action c7b50b2af4 TemplateMan Update [Mon Mar 4 08:20:22 UTC 2024] 🤖 2024-03-04 08:20:22 +00:00
Dhiyaneshwaran 640b020090 few more rules 2024-02-29 13:57:42 +05:30
Dhiyaneshwaran 356c7b497b Addition 2024-02-29 13:26:19 +05:30
Dhiyaneshwaran 68d5c246f4
Merge branch 'main' into add-missing-token 2024-02-29 12:01:10 +05:30
Dhiyaneshwaran eac235fc8f Adding Missing Token 2024-02-29 11:59:38 +05:30
Dhiyaneshwaran dd72a61a56
Rename http/exposures/tokens/docker/dockercfg-config.yaml to http/exposures/configs/dockercfg-config.yaml 2024-02-29 11:08:43 +05:30
Dhiyaneshwaran 646fff5a3a
Rename docker-daemon-exposed.yaml to docker-daemon-exposed.yaml 2024-02-29 10:11:58 +05:30
GitHub Action 19c8222d15 Auto Template Signing [Wed Feb 28 07:36:01 UTC 2024] 🤖 2024-02-28 07:36:02 +00:00
Ritik Chaddha 779990ccaf Update bruteforce tags 2024-02-28 10:41:31 +05:30
GitHub Action d2da0c6969 Auto Template Signing [Tue Feb 27 23:36:05 UTC 2024] 🤖 2024-02-27 23:36:05 +00:00
Dhiyaneshwaran 66653d65fe
Merge pull request #9215 from gtrrnr/patch-9
Create sphinxsearch-config.yaml
2024-02-28 05:03:39 +05:30
Ritik Chaddha 9f0777a35d
additional matchers 2024-02-27 23:30:29 +05:30
GitHub Action 5adf1866a3 Auto Template Signing [Mon Feb 26 11:57:15 UTC 2024] 🤖 2024-02-26 11:57:15 +00:00
Ritik Chaddha 3a48c67d27
Update artifactory-api-password.yaml 2024-02-26 16:41:55 +05:30
GitHub Action b0d18fea1a Auto Template Signing [Mon Feb 26 08:58:07 UTC 2024] 🤖 2024-02-26 08:58:07 +00:00
dongpohezui 7dc9a2dc31
Update coremail-config-disclosure.yaml
Update coremail-config-disclosure tags
2024-02-26 16:23:00 +08:00
gtrrnr 3e07c91034
Create sphinxsearch-config.yaml
Template to search for sphinx.conf file which contains pgsql/mysql/odb credentials
2024-02-24 06:15:44 +03:00
GitHub Action 255c3d2051 Auto Template Signing [Thu Feb 22 11:08:30 UTC 2024] 🤖 2024-02-22 11:08:30 +00:00
h1Akincibor/h1${7*7}{{7*7}} 687b1f0b71
Update zip-backup-files.yaml [Delete Duplicate]
Delete Duplicate filename and extention
2024-02-22 11:43:45 +01:00
GitHub Action d9d63862f3 Auto Template Signing [Mon Feb 19 18:01:54 UTC 2024] 🤖 2024-02-19 18:01:54 +00:00
Dhiyaneshwaran 72fa7b01aa Update path to existing template 2024-02-19 07:46:56 +05:30
Miguel Segovia Gil bf033cccbd
Update awstats-cgi-bin-detection.yaml 2024-02-18 02:57:33 +01:00
Miguel Segovia Gil 65fa125ca5 template for cgi-bin awstats detection 2024-02-17 14:22:54 +01:00
GitHub Action 9354df6084 Auto Template Signing [Thu Feb 15 08:10:46 UTC 2024] 🤖 2024-02-15 08:10:47 +00:00
k11h.de 17afdaa840
entend seen-in-the-wild locations for sendmail
I have found several instances where the sendmail log had the the .log filename extension and nuclei did not found it because this widely used location is not present
2024-02-15 00:35:59 +01:00
GitHub Action 7c46896600 Auto Template Signing [Mon Feb 12 18:33:19 UTC 2024] 🤖 2024-02-12 18:33:20 +00:00
Prince Chaddha 652903d374 replaced fuzz tag to brute-force 2024-02-12 23:02:40 +05:30