Commit Graph

728 Commits (0e7cb048a51dc838baaf4f789376083069bda4a4)

Author SHA1 Message Date
Dhiyaneshwaran 5088d51edd
error fix 2023-07-10 10:08:10 +05:30
GwanYeong Kim 0e5fcfa57e Updated EPSS Score to CVE Templates
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2023-07-10 09:25:11 +09:00
Prince Chaddha fb087bbc59 Merge branch 'main' into pussycat0x-1 2023-07-07 17:08:23 +05:30
Prince Chaddha 0a681ec0bb removed empty lines 2023-07-07 16:56:27 +05:30
pussycat0x 0ccffd229a
Merge branch 'main' into remove-comments 2023-07-07 16:38:46 +05:30
GitHub Action 8fc95cf110 TemplateMan Update [Fri Jul 7 10:32:26 UTC 2023] 🤖 2023-07-07 10:32:27 +00:00
GitHub Action db7e81da7e TemplateMan Update [Fri Jul 7 10:31:10 UTC 2023] 🤖 2023-07-07 10:31:10 +00:00
Ritik Chaddha fadad887fb
Merge pull request #7408 from j4vaovo/patch-54
Create apache-rocketmq-broker-unauth.yaml
2023-07-07 16:00:35 +05:30
Ritik Chaddha 855f8ea1e7
Merge pull request #7420 from j4vaovo/patch-55
Create apache-dubbo-unauth.yaml
2023-07-07 15:59:26 +05:30
pussycat0x 95a818f0c6
Rename network/apache-dubbo-unauth.yaml to network/misconfig/apache-dubbo-unauth.yaml 2023-07-06 23:14:42 +05:30
pussycat0x b12d7501f3
minor -update 2023-07-06 23:14:03 +05:30
pussycat0x 0d4c01fc20
Rename network/apache-rocketmq-broker-unauth.yaml to network/misconfig/apache-rocketmq-broker-unauth.yaml 2023-07-06 22:23:13 +05:30
pussycat0x 8871b8acd1
protocol & metadata -update 2023-07-06 22:22:31 +05:30
Prince Chaddha 75ed275328 removed enhanced by comments 2023-07-05 13:37:58 +05:30
sandeep 187fab91ee Merge remote-tracking branch 'origin' into pussycat0x-1 2023-07-04 15:42:58 +05:30
Prince Chaddha 50d86c25a1
Merge pull request #7344 from ErikOwen/patch/tag-standardization
Patch: Tag Standardization
2023-07-04 13:10:55 +05:30
pussycat0x 72d144cd52 Network Directory - Restructuring 2023-07-03 12:28:37 +05:30
GitHub Action d9ba084506 TemplateMan Update [Sat Jul 1 13:39:57 UTC 2023] 🤖 2023-07-01 13:39:58 +00:00
Dhiyaneshwaran 3b374adffa
Merge pull request #7564 from projectdiscovery/pussycat0x-patch-6
PostgreSQL - Unauthenticated Access
2023-07-01 19:08:04 +05:30
GitHub Action e9eafd5f7d TemplateMan Update [Sat Jul 1 13:36:56 UTC 2023] 🤖 2023-07-01 13:36:57 +00:00
Dhiyaneshwaran dd68087392
Update unauth-psql.yaml 2023-07-01 19:05:09 +05:30
ErikOwen 3a4b625e3d add detect tag to templates ending with -detect.yaml 2023-06-30 15:56:17 -07:00
ErikOwen 43248088bf add network tag to network/ templates 2023-06-30 15:53:55 -07:00
ErikOwen 7c39bb37e9 Merge remote-tracking branch 'origin/patch/tag-standardization' into patch/tag-standardization 2023-06-30 15:08:03 -07:00
ErikOwen 4e979d1dc5 merge branch main into patch/tag-standardization 2023-06-30 14:56:15 -07:00
pussycat0x 371642ad1a
PostgreSQL - User Enumeration 2023-06-28 18:16:54 +05:30
Dhiyaneshwaran 66607766cc
comment space fix 2023-06-28 10:54:50 +05:30
pussycat0x 7b8f01380d
Update unauth-psql.yaml 2023-06-28 10:32:46 +05:30
pussycat0x fb81d4d0a2
Add files via upload 2023-06-28 10:14:14 +05:30
GitHub Action acfcac3e67 TemplateMan Update [Fri Jun 23 05:22:07 UTC 2023] 🤖 2023-06-23 05:22:08 +00:00
Ritik Chaddha 16dcbe64db
Merge pull request #7326 from projectdiscovery/pussycat0x-patch-6
CVE-2020-1938 minor - update
2023-06-23 10:50:08 +05:30
pussycat0x f98a8c1e56
Update CVE-2020-1938.yaml 2023-06-23 10:27:18 +05:30
GitHub Action 41277637c0 TemplateMan Update [Wed Jun 21 21:03:53 UTC 2023] 🤖 2023-06-21 21:03:54 +00:00
Dhiyaneshwaran 17f9727040
Merge pull request #7444 from j4vaovo/patch-61
Update CVE-2020-11981.yaml
2023-06-16 10:30:13 +05:30
Dhiyaneshwaran f90fab0938
Merge pull request #7443 from j4vaovo/patch-60
Update CVE-2023-33246.yaml
2023-06-16 10:29:00 +05:30
Ritik Chaddha 191365a6c8
Merge pull request #7422 from j4vaovo/patch-56
Update CVE-2022-24706.yaml
2023-06-16 10:26:34 +05:30
Dhiyaneshwaran 3f13ff9e76
Merge pull request #7392 from projectdiscovery/princechaddha-patch-2
Fixing tags
2023-06-16 09:48:34 +05:30
J4vaovo 525917af27
Update tidb-native-password.yaml 2023-06-15 03:26:00 +08:00
J4vaovo c6e9e385d1
Update CVE-2020-11981.yaml 2023-06-15 03:01:51 +08:00
J4vaovo 0c2823fb5b
Update CVE-2023-33246.yaml 2023-06-15 03:00:56 +08:00
pussycat0x 916c498ad1
Merge pull request #7440 from j4vaovo/patch-57
Update CVE-2018-2893.yaml
2023-06-14 23:31:02 +05:30
J4vaovo b6c4907e47
Update CVE-2016-3510.yaml 2023-06-15 01:50:29 +08:00
J4vaovo 62a59e1bcd
Update CVE-2018-2893.yaml 2023-06-15 01:44:49 +08:00
J4vaovo 1f3cb91d40
Update CVE-2022-24706.yaml 2023-06-14 19:40:06 +08:00
J4vaovo 3473c3fc13
Update apache-rocketmq-broker-unauth.yaml 2023-06-14 18:44:15 +08:00
J4vaovo 133c7c5854
Create apache-dubbo-unauth.yaml 2023-06-14 18:39:09 +08:00
J4vaovo 1ee72e0cf8
Update apache-rocketmq-broker-unauth.yaml 2023-06-14 01:25:54 +08:00
J4vaovo 8adf33c65e
Update apache-rocketmq-broker-unauth.yaml 2023-06-14 00:14:49 +08:00
J4vaovo 0cd15711c9
Update apache-rocketmq-broker-unauth.yaml 2023-06-14 00:13:51 +08:00
J4vaovo 445b079614
Create apache-rocketmq-broker-unauth.yaml 2023-06-14 00:10:15 +08:00
Prince Chaddha b86f5b4a3c
Fixed matchers-condition CVE-2020-11981 2023-06-13 14:22:29 +05:30
Prince Chaddha f9fd870fbb misc changes 2023-06-12 18:54:55 +05:30
Ritik Chaddha 25b6a01944
Merge pull request #7340 from projectdiscovery/pussycat0x-patch-14
CVE-2023-33246  -  RocketMQ <= 5.1.0 Remote Code Execution
2023-06-08 23:46:44 +05:30
Ritik Chaddha 13cfd3403b
Update CVE-2023-33246.yaml 2023-06-08 23:37:44 +05:30
sandeep bf7a9bea6c strict + fixed matcher 2023-06-07 17:54:20 +05:30
Dhiyaneshwaran d4c0410724
Update CVE-2022-24706.yaml 2023-06-06 12:47:45 +05:30
Dhiyaneshwaran f6a913e67d
protocol update 2023-06-06 12:43:28 +05:30
Dhiyaneshwaran 1e6a6f6937
Merge pull request #7070 from projectdiscovery/feat-CVE-2022-24706
Adding CVE-2022-24706 (couchdb RCE)
2023-06-06 12:40:24 +05:30
pussycat0x 6d24c721bf
data - update 2023-06-06 12:37:03 +05:30
Dhiyaneshwaran 6b9d2d8791
minor enhancement 2023-06-06 12:12:39 +05:30
Ritik Chaddha 1e1becbe31
lint fix 2023-06-06 09:36:47 +05:30
sandeep ffd3754f68 syntax fixes 2023-06-06 03:45:15 +05:30
ErikOwen 58c473547d add network tag to templates in network/ 2023-06-05 11:07:02 -07:00
pussycat0x 6870afdbaf
condition - update 2023-06-05 19:50:08 +05:30
Dhiyaneshwaran 98d42373cc
added metadata 2023-06-05 17:00:49 +05:30
pussycat0x 96e6a4ef23
Update CVE-2023-33246.yaml 2023-06-05 16:38:24 +05:30
sandeep e53d19f583 boolean format update 2023-06-04 13:43:42 +05:30
GitHub Action df5a969b80 Auto Generated CVE annotations [Sat Jun 3 18:56:35 UTC 2023] 🤖 2023-06-03 18:56:35 +00:00
pussycat0x b10e9e7a8a
Rename cves/2022/CVE-2022-24706.yaml to network/cves/2022/CVE-2022-24706.yaml 2023-06-02 13:14:45 +05:30
Ritik Chaddha 5606478cc2 update max-req=> max-request 2023-06-01 23:08:50 +05:30
Ritik Chaddha bc3dd3c0d4 Revert "update max-req => max-request"
This reverts commit d82143eacc.
2023-06-01 22:48:38 +05:30
Ritik Chaddha d82143eacc update max-req => max-request 2023-06-01 22:46:25 +05:30
sandeep 60331c8e46 lint update 2023-06-01 21:51:22 +05:30
sandeep a9427d2479 misc updates 2023-06-01 21:47:35 +05:30
pussycat0x 65d9266e31
CVE-2023-33246 RocketMQ versions <= 5.1.0 Remote Code Execution 2023-06-01 21:02:58 +05:30
Dhiyaneshwaran 96a1e25e14
Merge pull request #7305 from ruben-condor/add-classification-for-CVE-2020-11981.yaml
Updated CVE-2020-11981
2023-05-31 16:07:25 +05:30
pussycat0x 511a84bd24
Update CVE-2020-1938.yaml 2023-05-31 08:41:37 +05:30
pussycat0x 6b6bfb32aa
CVE-2020-1938 minor - update 2023-05-31 08:34:41 +05:30
Dhiyaneshwaran dd7721e326
Update axigen-mail-server-detect.yaml 2023-05-30 15:34:14 +05:30
Ruben Condor 4721c2fc48
Updated axigen-mail-server-detect.yaml 2023-05-30 12:09:21 +03:00
Ruben Condor a1faf3d103
Updated CVE-2020-11981 2023-05-29 14:32:09 +03:00
Ritik Chaddha c9db123f00
Merge branch 'main' into CVE-2017-5645 2023-05-24 21:44:34 +05:30
Ritik Chaddha ea95e195d3
updated info 2023-05-24 21:42:39 +05:30
pussycat0x 70f90eb489
minor -update 2023-05-24 20:09:45 +05:30
Prince Chaddha 5e478b89c7
Rename teamspeak3-detect to teamspeak3-detect.yaml 2023-05-19 12:17:23 +05:30
Ritik Chaddha d7307f30cb
Merge pull request #7251 from projectdiscovery/princechaddha-patch-5
Create CVE-2016-3510.yaml
2023-05-18 19:51:30 +05:30
Ritik Chaddha 5e6c3691c0
updated info 2023-05-18 19:48:04 +05:30
Dhiyaneshwaran 89ac9e63d6
Merge pull request #7242 from projectdiscovery/pussycat0x-patch-6
CVE-2020-11981
2023-05-18 15:10:00 +05:30
Dhiyaneshwaran d9a02b0c53
added additional matcher 2023-05-18 14:58:30 +05:30
Ritik Chaddha 12b7b57f30
lint fix 2023-05-18 12:00:39 +05:30
Prince Chaddha e93696fa8a
Create CVE-2016-3510.yaml 2023-05-18 11:30:51 +05:30
pussycat0x 5c0e6198cd
minor -update 2023-05-17 18:46:14 +05:30
Dhiyaneshwaran c3db741049
Merge pull request #7220 from ricardojba/patch-1
Update exposed-redis.yaml
2023-05-17 10:43:08 +05:30
pussycat0x c7be82ceee
Update CVE-2020-11981.yaml 2023-05-17 02:03:10 +05:30
Dhiyaneshwaran 24aaa07529
Merge pull request #7222 from ricardojba/patch-3
Update CVE-2022-0543.yaml
2023-05-17 01:37:52 +05:30
Ritik Chaddha e80da2de1e
lint fix 2023-05-16 23:39:07 +05:30
pussycat0x e9465adf12
CVE-2020-11981 2023-05-16 21:59:43 +05:30
Ricardo 46117c8435
Update CVE-2022-0543.yaml
Support TLS enabled Redis
2023-05-11 15:34:05 +01:00
Ricardo 5105ffc5c3
Update redis-detect.yaml
Detect TLS enabled Redis and TLS enabled Azure Cache for Redis
2023-05-11 15:30:15 +01:00
Ricardo fad493fcfb
Update exposed-redis.yaml
Detect TLS enabled Redis and TLS enabled Azure Cache for Redis
2023-05-11 15:27:52 +01:00
Ritik Chaddha 9a7ac7d2bd
Merge pull request #7208 from projectdiscovery/pussycat0x-patch-14
SMTP User Enumeration
2023-05-11 17:02:16 +05:30
Ritik Chaddha c187d4cc2c
Merge pull request #7181 from projectdiscovery/pussycat0x-patch-6
SMTP Commands Enumeration
2023-05-11 16:25:17 +05:30
pussycat0x 18323967e8
Create smtp-user-enum.yaml 2023-05-10 01:22:05 +05:30
pussycat0x 0246c47f00
Delete smtp-user-enum.yaml 2023-05-10 01:17:14 +05:30
pussycat0x 64b021ede2
SMTP User Enumeration 2023-05-10 01:11:48 +05:30
pussycat0x a289dc9ef5
Update smtp-commands-enum.yaml 2023-05-10 00:05:39 +05:30
pussycat0x 983915d4bc
Rename CVE-2020-11547.yaml to CVE-2020-11547.yaml 2023-05-05 19:02:53 +05:30
pussycat0x ed67d0b943
Update smtp-commands-enum.yaml 2023-05-05 18:58:03 +05:30
pussycat0x d17a0c1246
SMTP Commands Enumeration 2023-05-05 18:56:49 +05:30
Ritik Chaddha 561b42ebe7 Merge branch 'main' into add-cpe-epss 2023-05-05 00:00:13 +05:30
sandeep e5ae45127e Merge remote-tracking branch 'origin' into add-cpe-epss 2023-05-02 18:21:24 +05:30
sandeep 1f5b1f2c47 Added max request counter of each template 2023-04-28 13:41:21 +05:30
Prince Chaddha e0af666e1c
Refactoring the directory structure based on protocols (#7137)
* moving http templates

* updated cves.json

* moved network CVEs

* updated scripts

* updated workflows

* updated requests to http

* replaced network to tcp

---------

Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-04-27 09:58:59 +05:30
Dhiyaneshwaran c6718f1499
Update beanstalk-service.yaml 2023-04-21 17:12:11 +05:30
Dhiyaneshwaran 799f713b8c
Update msmq-detect.yaml 2023-04-21 17:11:37 +05:30
pussycat0x bf126b24c8
Protocol update network -> tcp 2023-04-20 02:46:20 +05:30
Ritik Chaddha 5dc6036a9a
Update msmq-detect.yaml 2023-04-20 02:28:15 +05:30
Ritik Chaddha d4b490195d
indentation fix 2023-04-19 23:17:04 +05:30
Brandon Hutchinson e34e263509 Added network/detection/msmq-detect.yaml 2023-04-19 15:34:10 +00:00
pussycat0x a623589fcc
Beanstalk Service - Detect 2023-04-12 17:26:45 +05:30
Prince Chaddha 899029a1aa
updated to host 2023-04-09 08:17:24 +05:30
pussycat0x 40465c769c
minor -update 2023-04-08 22:42:10 +05:30
pussycat0x 5fa705e717
Update kafka-topics-list.yaml 2023-04-05 13:16:13 +05:30
pussycat0x db1f466f51
fix -FP 2023-04-05 10:28:38 +05:30
Ritik Chaddha dec264a418
Merge pull request #7009 from MostInterestingBotInTheWorld/dashboard
Dashboard Content Enhancements
2023-03-31 21:19:24 +05:30
pussycat0x e53386d074
Update kafka-topics-list.yaml 2023-03-30 20:02:42 +05:30
pussycat0x 7ea625bf1f
Kafka Topics List 2023-03-30 17:10:37 +05:30
MostInterestingBotInTheWorld 455f69376f Enhancement: network/detection/rtsp-detect.yaml by md 2023-03-29 15:24:51 -04:00
MostInterestingBotInTheWorld 3e2df9f3cd Enhancement: network/detection/imap-detect.yaml by md 2023-03-29 15:22:47 -04:00
MostInterestingBotInTheWorld c8ed0959c9 Enhancement: network/detection/esmtp-detect.yaml by md 2023-03-29 15:21:25 -04:00
MostInterestingBotInTheWorld 400886032e Enhancement: network/detection/dotnet-remoting-service-detect.yaml by md 2023-03-29 15:15:20 -04:00
Notealot 4d524fd178
Update CVE-2011-2523.yaml (#6975) 2023-03-28 16:52:10 +05:30
MostInterestingBotInTheWorld 186745475b
dos2unix conversions (#6969)
* Add description and enhance one where the UI failed to save properly.
dos2unix on a template

* Change cvedetails link to nvd

* make severities match

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2017/CVE-2017-14524.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2019/CVE-2019-16759.yaml by md

* Enhancement: cves/2021/CVE-2021-22986.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24347.yaml by md

* Enhancement: cves/2021/CVE-2021-25003.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25298.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-28151.yaml by md

* Enhancement: cves/2021/CVE-2021-30128.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0885.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-24816.yaml by md

* Enhancement: cves/2022/CVE-2022-31499.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-34753.yaml by md

* Enhancement: cves/2022/CVE-2022-39952.yaml by md

* Enhancement: cves/2022/CVE-2022-4060.yaml by md

* Enhancement: cves/2022/CVE-2022-44877.yaml by md

* Enhancement: cves/2023/CVE-2023-0669.yaml by md

* Enhancement: cves/2023/CVE-2023-26255.yaml by md

* Enhancement: cves/2023/CVE-2023-26256.yaml by md

* Enhancement: exposures/files/salesforce-credentials.yaml by md

* Enhancement: misconfiguration/hadoop-unauth-rce.yaml by md

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by md

* Enhancement: network/backdoor/backdoored-zte.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: technologies/oracle/oracle-atg-commerce.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-dbt.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-rce.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-xss.yaml by md

* Enhancement: vulnerabilities/cisco/cisco-cloudcenter-suite-rce.yaml by md

* Enhancement: vulnerabilities/froxlor-xss.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/opencpu/opencpu-rce.yaml by md

* Enhancement: vulnerabilities/other/academy-lms-xss.yaml by md

* Enhancement: vulnerabilities/other/caucho-resin-info-disclosure.yaml by md

* Enhancement: vulnerabilities/other/ckan-dom-based-xss.yaml by md

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by md

* Enhancement: vulnerabilities/other/graylog-log4j.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Initial cleanups for syntax errors

* dashboard gremlins

* Add log4j back to name

* Enhancement: exposures/files/salesforce-credentials.yaml by cs

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by cs

* Enhancement: network/backdoor/backdoored-zte.yaml by cs

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by cs

* Sev and other info tweaks

* Merge conflict

* Run dos2unix against all templates

* too many newlines error

* Fix too many blank lines error

* Fix severity mismatches
Cleanup language on a new test

---------

Co-authored-by: sullo <sullo@cirt.net>
2023-03-27 14:22:40 -04:00
sullo 96d0b8f950 Run dos2unix against all templates 2023-03-27 13:56:52 -04:00
MostInterestingBotInTheWorld 301fddaeb0
Dashboard Content Enhancements (#6965)
* Add description and enhance one where the UI failed to save properly.
dos2unix on a template

* Change cvedetails link to nvd

* make severities match

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2017/CVE-2017-14524.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2019/CVE-2019-16759.yaml by md

* Enhancement: cves/2021/CVE-2021-22986.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24145.yaml by md

* Enhancement: cves/2021/CVE-2021-24347.yaml by md

* Enhancement: cves/2021/CVE-2021-25003.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25296.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-25298.yaml by md

* Enhancement: cves/2021/CVE-2021-25297.yaml by md

* Enhancement: cves/2021/CVE-2021-28151.yaml by md

* Enhancement: cves/2021/CVE-2021-30128.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0824.yaml by md

* Enhancement: cves/2022/CVE-2022-0885.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-24816.yaml by md

* Enhancement: cves/2022/CVE-2022-31499.yaml by md

* Enhancement: cves/2022/CVE-2022-21587.yaml by md

* Enhancement: cves/2021/CVE-2021-24155.yaml by md

* Enhancement: cves/2017/CVE-2017-5638.yaml by md

* Enhancement: cves/2015/CVE-2015-2863.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-2314.yaml by md

* Enhancement: cves/2022/CVE-2022-33901.yaml by md

* Enhancement: cves/2022/CVE-2022-34753.yaml by md

* Enhancement: cves/2022/CVE-2022-39952.yaml by md

* Enhancement: cves/2022/CVE-2022-4060.yaml by md

* Enhancement: cves/2022/CVE-2022-44877.yaml by md

* Enhancement: cves/2023/CVE-2023-0669.yaml by md

* Enhancement: cves/2023/CVE-2023-26255.yaml by md

* Enhancement: cves/2023/CVE-2023-26256.yaml by md

* Enhancement: exposures/files/salesforce-credentials.yaml by md

* Enhancement: misconfiguration/hadoop-unauth-rce.yaml by md

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by md

* Enhancement: network/backdoor/backdoored-zte.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: network/detection/ibm-d2b-database-server.yaml by md

* Enhancement: technologies/oracle/oracle-atg-commerce.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-abuseipdb.yaml by md

* Enhancement: token-spray/api-dbt.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-rce.yaml by md

* Enhancement: vulnerabilities/avaya/avaya-aura-xss.yaml by md

* Enhancement: vulnerabilities/cisco/cisco-cloudcenter-suite-rce.yaml by md

* Enhancement: vulnerabilities/froxlor-xss.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/jamf/jamf-log4j-jndi-rce.yaml by md

* Enhancement: vulnerabilities/opencpu/opencpu-rce.yaml by md

* Enhancement: vulnerabilities/other/academy-lms-xss.yaml by md

* Enhancement: vulnerabilities/other/caucho-resin-info-disclosure.yaml by md

* Enhancement: vulnerabilities/other/ckan-dom-based-xss.yaml by md

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by md

* Enhancement: vulnerabilities/other/graylog-log4j.yaml by md

* Enhancement: vulnerabilities/mobileiron/mobileiron-log4j-jndi-rce.yaml by md

* Initial cleanups for syntax errors

* dashboard gremlins

* Add log4j back to name

* Enhancement: exposures/files/salesforce-credentials.yaml by cs

* Enhancement: misconfiguration/installer/nopcommerce-installer.yaml by cs

* Enhancement: network/backdoor/backdoored-zte.yaml by cs

* Enhancement: vulnerabilities/other/couchdb-adminparty.yaml by cs

* Sev and other info tweaks

* Merge conflict

---------

Co-authored-by: sullo <sullo@cirt.net>
2023-03-27 23:16:47 +05:30
MostInterestingBotInTheWorld 6df60bcdbc Enhancement: network/backdoor/backdoored-zte.yaml by cs 2023-03-27 10:21:11 -04:00
Dhiyaneshwaran d5735af67c
rename template 2023-03-25 21:58:41 +05:30
pussycat0x 454e78ba85
indentation -fix 2023-03-24 22:01:02 +05:30
pussycat0x f5dad6ef56
Erlang Port Mapper Daemon 2023-03-24 21:58:12 +05:30
MostInterestingBotInTheWorld 061159686a Enhancement: network/detection/ibm-d2b-database-server.yaml by md 2023-03-22 14:32:23 -04:00
MostInterestingBotInTheWorld 56ffd6e01a Enhancement: network/backdoor/backdoored-zte.yaml by md 2023-03-22 14:28:53 -04:00
sullo d69d4c45ca Add description and enhance one where the UI failed to save properly.
dos2unix on a template
2023-03-17 15:01:01 -04:00
MostInterestingBotInTheWorld 7677e07dec
Merge branch 'main' into dashboard 2023-03-17 11:24:28 -04:00
Ritik Chaddha 2b5c3c48cc
Merge pull request #6823 from sullo/severity-matching
Match severity with CVSS
2023-03-15 20:48:33 +05:30
MostInterestingBotInTheWorld b5383637ac Enhancement: network/detection/pgsql-detect.yaml by md 2023-03-15 11:07:42 -04:00
MostInterestingBotInTheWorld 64ae188a74 Enhancement: network/enumeration/mongodb-info-enum.yaml by md 2023-03-15 10:40:16 -04:00
MostInterestingBotInTheWorld 5774cb2bbb Enhancement: network/detection/pgsql-detect.yaml by md 2023-03-15 10:33:12 -04:00
MostInterestingBotInTheWorld 10545d4959 Enhancement: network/detection/mysql-detect.yaml by md 2023-03-15 10:23:13 -04:00
sullo b0c9406fbe Manual enhancement
dos2unix
2023-03-10 16:37:55 -05:00
sullo b349a35aa5 Add space after # 2023-03-10 15:27:26 -05:00
sullo 2a7b69bab3 Match severity with CVSS 2023-03-03 10:27:54 -05:00
Ritik Chaddha b0a48d26bb
updated matcher and cmd 2023-03-03 15:09:15 +05:30
pussycat0x 4355ce32d1
Create CVE-2011-2523.yaml 2023-03-03 15:00:28 +05:30
Dhiyaneshwaran 81dff9d12f
fix indentation 2023-02-15 00:18:28 +05:30
pussycat0x bb864a4454
RTSP detect -Enhancement 2023-02-08 13:05:41 +05:30
Dhiyaneshwaran 24401daad9
Merge pull request #6682 from projectdiscovery/pussycat0x-patch-2
RTSP Protocol Detection
2023-02-07 09:39:43 +05:30
Dhiyaneshwaran f0836729ea
fix name , spacing and tag 2023-02-07 09:25:38 +05:30
MostInterestingBotInTheWorld f2e530fa0e Enhancement: network/detect-jabber-xmpp.yaml by md 2023-02-06 17:15:22 -05:00
MostInterestingBotInTheWorld e3b26e37a5 Enhancement: network/detect-addpac-voip-gateway.yaml by md 2023-02-06 17:12:44 -05:00
Ritik Chaddha 0b5c0d6698
lint fix 2023-02-07 02:09:56 +05:30
Ritik Chaddha fee8ede5fa
Merge branch 'main' into dashboard 2023-02-07 02:04:58 +05:30
MostInterestingBotInTheWorld aec33ae228 Enhancement: network/detection/rsyncd-service-detect.yaml by md 2023-02-06 10:31:23 -05:00
MostInterestingBotInTheWorld b9036e080e Enhancement: network/detection/rpcbind-portmapper-detect.yaml by md 2023-02-06 10:29:04 -05:00
MostInterestingBotInTheWorld cd35c9dc5a Enhancement: network/detection/redis-detect.yaml by md 2023-02-06 10:25:10 -05:00
MostInterestingBotInTheWorld 2667af3112 Enhancement: network/detection/rdp-detect.yaml by md 2023-02-06 10:23:34 -05:00
MostInterestingBotInTheWorld f28b2aeb87 Enhancement: network/detection/iplanet-imap-detect.yaml by md 2023-02-06 10:20:23 -05:00
MostInterestingBotInTheWorld d7e18e05ee Enhancement: network/detection/pop3-detect.yaml by md 2023-02-06 10:18:42 -05:00
MostInterestingBotInTheWorld 139e64e18f Enhancement: network/detection/iplanet-imap-detect.yaml by md 2023-02-06 10:16:06 -05:00
MostInterestingBotInTheWorld 0393910b19 Enhancement: network/detection/openssh-detect.yaml by md 2023-02-06 10:15:39 -05:00
MostInterestingBotInTheWorld bbabfda562 Enhancement: network/detection/mongodb-detect.yaml by md 2023-02-06 10:13:24 -05:00
MostInterestingBotInTheWorld 2409e9944b Enhancement: network/detection/mikrotik-routeros-api.yaml by md 2023-02-06 10:11:15 -05:00
MostInterestingBotInTheWorld f35bb05764 Enhancement: network/detection/java-rmi-detect.yaml by md 2023-02-06 10:10:15 -05:00
MostInterestingBotInTheWorld 98bc7cb833 Enhancement: network/detection/iplanet-imap-detect.yaml by md 2023-02-06 10:07:55 -05:00
MostInterestingBotInTheWorld 04e0500de0 Enhancement: network/detection/gopher-detect.yaml by md 2023-02-06 10:03:45 -05:00
pussycat0x bcf5b7cb2a
reference -update 2023-02-06 19:34:58 +05:30
pussycat0x 00467ae2db
lint -update 2023-02-06 19:25:09 +05:30
pussycat0x 62e8b86313
RTSP Protocol Detection 2023-02-06 19:22:29 +05:30
pussycat0x 12f535557a
moving enumeration folder 2023-02-03 18:43:03 +05:30
Dhiyaneshwaran fd2faad782
Merge pull request #6474 from praetorian-matt-schneider/update_ftp-anonymous-login
Update ftp-anonymous-login to reject HTTP false positives
2023-02-03 17:49:54 +05:30
pussycat0x f721102dad
negative: true -Update 2023-02-03 16:09:45 +05:30
pussycat0x 463563302a
condition -update 2023-02-03 15:54:16 +05:30
pussycat0x 366d903054
negative:true -update 2023-02-03 15:45:45 +05:30
Dhiyaneshwaran 369971585f
fix-lint 2023-02-03 13:18:58 +05:30
Dhiyaneshwaran 23b26ec95b
fix-formatting 2023-02-02 23:32:24 +05:30
Prince Chaddha a32baa88d0
moved to enumeration 2023-02-02 22:06:25 +05:30
pussycat0x 351c13864a
condition -update 2023-02-02 20:33:56 +05:30
pussycat0x dc23660d4f
MongoDB Information Enumeration 2023-02-02 20:31:26 +05:30
MostInterestingBotInTheWorld 693e1e3daa
Dashboard Content Enhancements (#6613)
Dashboard Content Enhancements
2023-01-24 08:21:18 -08:00
sullo d51bacf769
Merge branch 'main' into dashboard 2023-01-24 08:15:56 -08:00
Dhiyaneshwaran bdb0ec2e13
formatting 2023-01-24 18:44:32 +05:30
pussycat0x 54c908a65b
yaml lint -fix 2023-01-24 16:32:34 +05:30
pussycat0x 09b32e9ecf
TeamSpeak 3 ServerQuery Detection 2023-01-24 16:27:32 +05:30
sullo e9e29939f7 Fixing: severity mismatches, trailing spaces, other cleanups 2023-01-23 22:06:12 -08:00
MostInterestingBotInTheWorld 0d6fbd237f
Dashboard Content Enhancements (#6598)
Dashboard Content Enhancements
2023-01-23 14:14:23 -08:00
sullo 8a3eeea516 Fixing spelling, -dorks, and some severity mismatches 2023-01-23 15:11:25 -05:00
Dhiyaneshwaran 58a73d57cd
Merge pull request #6304 from lu4nx/fix-os-version-match
Fix matched OS version information
2023-01-15 22:23:06 +05:30
Matt Schneider 25fb048156 adds matcher to ftp anonymous login which checks for bad http responses (false positives) 2023-01-05 14:33:20 -06:00
Dhiyaneshwaran 8e38d02306
change-formatting 2023-01-04 12:55:04 +05:30
pussycat0x 1db046d4bd
matchers comments added 2022-12-30 15:51:06 +05:30
pussycat0x ed7f45fd03
condition -updated 2022-12-30 15:43:22 +05:30
nybble04 7869328bc6
Update matchers 2022-12-29 19:01:56 +04:00
nybble04 a9c2622572
Merge branch 'projectdiscovery:main' into pgsql_detect 2022-12-29 18:48:10 +04:00
Prince Chaddha 9a42ddb3d7
Update exposed-dockerd.yaml 2022-12-29 15:23:10 +05:30
pussycat0x 7e23fae3b4
metadata & description -update 2022-12-27 22:39:21 +05:30
nybble04 0f783f11a1 Add newline EOF 2022-12-27 18:15:09 +04:00
nybble04 cad9e85d7d Add a postgresql server detection template 2022-12-27 18:07:25 +04:00
pussycat0x 250c69ea79
Merge pull request #6335 from arafatansari/patch-117
Create exposed-dockerd.yaml
2022-12-20 15:19:56 +05:30
Dhiyaneshwaran 58c5340ee2
added case insensitive 2022-12-16 15:47:42 +05:30
Dhiyaneshwaran 363565e9e3
fix lint 2022-12-16 15:41:57 +05:30
Dhiyaneshwaran 2d2f1dcd89
Update mysql-detect.yaml 2022-12-16 15:39:59 +05:30
Ritik Chaddha 5584a179be
Update exposed-dockerd.yaml 2022-12-16 14:02:27 +05:30
Dhiyaneshwaran 6f14421d84
formatting-changes 2022-12-16 09:43:14 +05:30
pussycat0x 8cb89ed42f
Add files via upload 2022-12-15 22:36:12 +05:30
Arafat Ansari 62daf0fa83
Create exposed-dockerd.yaml 2022-12-11 01:00:38 +05:30
Ritik Chaddha f966f559ac
Merge pull request #6228 from projectdiscovery/rpcbind-portmapper-detect
Create rpcbind-portmapper-detect.yaml
2022-12-09 14:24:37 +05:30
lu4nx adab705f08
Fix matched OS version information, same fingerprint used by Windows XP SP1~SP3 and Windows 2000 2022-12-09 16:05:14 +08:00
Dhiyaneshwaran cab75b415a
Update rpcbind-portmapper-detect.yaml 2022-12-09 10:06:04 +05:30
Ritik Chaddha 78fd4687c9
Merge pull request #6227 from projectdiscovery/finger-detect
Create finger-detect.yaml
2022-12-09 01:15:52 +05:30
pussycat0x edef7ef854
Add files via upload 2022-12-07 18:44:26 +05:30
pussycat0x 16372e3ed0
Update redis-detect.yaml 2022-12-06 00:14:56 +05:30
pussycat0x 39c69cc753
Add files via upload 2022-12-06 00:11:19 +05:30
Dhiyaneshwaran 976dde4a7f
Create rpcbind-portmapper-detect.yaml 2022-12-05 13:12:28 +05:30
Dhiyaneshwaran e444caba63
Create finger-detect.yaml 2022-12-05 11:59:42 +05:30
GitHub Action 5a6e36f348 Auto Generated CVE annotations [Sun Dec 4 05:32:13 UTC 2022] 🤖 2022-12-04 05:32:13 +00:00
Prince Chaddha 83d60725dc
Merge pull request #6111 from S0obi/feature/ldap-anonymous-login
Add ldap-anonymous-login template
2022-12-04 10:46:52 +05:30
Prince Chaddha 7a1dffa77f
Update and rename network/ldap-anonymous-login.yaml to network/default-login/ldap-anonymous-login.yaml 2022-12-04 10:44:41 +05:30
Prince Chaddha b27a96a038
Merge pull request #6128 from projectdiscovery/Dropbear-sshd-Weak-Key-Exchange-Algorithms-Detection
Dropbear sshd Weak Key Exchange Algorithms Detection
2022-12-02 17:32:54 +05:30
Prince Chaddha 77d1df59c8
Merge pull request #6129 from projectdiscovery/Dropbear-Weak-MAC-Algorithms-Detection
Dropbear Weak MAC Algorithms Detection
2022-12-02 17:32:42 +05:30
Prince Chaddha 7d256bb977
Update dropbear-weakmac.yaml 2022-12-02 17:28:09 +05:30
Prince Chaddha f348bdb00f
Merge pull request #6127 from projectdiscovery/Dropbear-sshd-CBC-Mode-Ciphers-Detection
Dropbear sshd CBC Mode Ciphers Detection
2022-12-02 17:22:53 +05:30
Prince Chaddha 569ad7be4d
Update dropbear-cbc-ciphers.yaml 2022-12-02 17:20:59 +05:30
pussycat0x f9822b92c6
Update dropbear-cbc-ciphers.yaml 2022-12-02 17:19:56 +05:30
Prince Chaddha 0c27bbb4f4
Update and rename network/detection/dropbear-weakmac-detect.yaml to network/misconfig/dropbear-weakmac.yaml 2022-11-26 21:51:18 +05:30
Prince Chaddha 7ae682e282
Update and rename network/detection/dropbear-weakalgo-detect.yaml to network/misconfig/dropbear-weakalgo.yaml 2022-11-26 21:48:17 +05:30
Prince Chaddha 8da9ba62cc
Merge pull request #6122 from projectdiscovery/FP-smb-detection
Update and rename smb-v1-detect.yaml to smb-detect.yaml
2022-11-26 21:40:22 +05:30
Philippe Delteil 34000c1d3a
Update exposed-adb.yaml
template id typo -> corrected to match filename.
2022-11-25 13:37:17 -05:00
Dhiyaneshwaran f941adcb42
Update dropbear-cbc-ciphers.yaml 2022-11-25 00:05:59 +05:30
Dhiyaneshwaran 3976eaca14
Update dropbear-weakalgo-detect.yaml 2022-11-25 00:03:45 +05:30
Dhiyaneshwaran 666952c571
Update dropbear-weakmac-detect.yaml 2022-11-25 00:02:02 +05:30
Dhiyaneshwaran 83592ece02
Update dropbear-weakmac-detect.yaml 2022-11-25 00:01:03 +05:30
Dhiyaneshwaran 9bcc32cace
Update dropbear-weakmac-detect.yaml 2022-11-24 23:46:58 +05:30
pussycat0x 3756b62c5a
Update dropbear-cbc-ciphers.yaml 2022-11-23 23:45:18 +05:30
pussycat0x e836f87abe
Update dropbear-weakalgo-detect.yaml 2022-11-23 23:44:28 +05:30
pussycat0x 1301ba2000
Update dropbear-weakmac-detect.yaml 2022-11-23 23:42:39 +05:30
pussycat0x 61b6695597
Update dropbear-weakalgo-detect.yaml 2022-11-23 12:34:47 +05:30
pussycat0x d076e3aa19
Update dropbear-weakmac-detect.yaml 2022-11-23 12:34:04 +05:30
pussycat0x fa96ca1a41
Update dropbear-cbc-ciphers.yaml 2022-11-23 12:32:38 +05:30
pussycat0x 5f46d6c206
Update dropbear-weakalgo-detect.yaml 2022-11-23 12:31:40 +05:30
pussycat0x b1a1903b85
Update dropbear-weakmac-detect.yaml 2022-11-23 00:03:32 +05:30
pussycat0x 9992d2b9e5
Add files via upload 2022-11-22 23:59:56 +05:30