daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
5,382 Commits
17 Branches
0 Tags
165 MiB
Commit Graph

5382 Commits (25fdd0068eed746c5d42cd8d61c537949c6ebfab)

Author SHA1 Message Date
Sandeep Singh 25fdd0068e
Merge pull request #1632 from geeknik/patch-103 
Update rails-database-config.yaml
 2021-06-06 14:16:53 +05:30
sandeep 9b3c3ec7a0 tags + additional string match 2021-06-06 14:14:01 +05:30
Sandeep Singh 6244641122
Merge pull request #1633 from pdelteil/patch-5 
Update smartling-takeover.yaml
 2021-06-06 14:06:51 +05:30
Sandeep Singh aa01e47d28
Merge pull request #1641 from nrathaus/master 
Spelling
 2021-06-06 14:06:23 +05:30
Sandeep Singh fae9755374
Merge pull request #1639 from pdelteil/patch-9 
Update shell-history.yaml
 2021-06-06 13:40:47 +05:30
sandeep 0cf8ffdc57 misc changes 2021-06-06 13:39:16 +05:30
Sandeep Singh 108894bfbd
Merge pull request #1638 from pdelteil/patch-8 
Update aws-object-listing.yaml
 2021-06-06 13:19:23 +05:30
sandeep e2eaedc6a1 misc updates 2021-06-06 13:19:01 +05:30
Noam Rathaus 8b0c5eaee3 Spelling 2021-06-06 10:35:09 +03:00
Sandeep Singh 99550ea082
Merge pull request #1640 from pdelteil/patch-10 
Update phpmyadmin-panel.yaml
 2021-06-06 12:43:23 +05:30
sandeep 5bed289288 Update phpmyadmin-panel.yaml 2021-06-06 12:41:30 +05:30
sandeep c8dd574555 Minor improvements 2021-06-06 12:07:19 +05:30
Philippe Delteil c0c29d26ba
Update phpmyadmin-panel.yaml 
Extractor added to retrieve version. 
Test

nuclei -t nuclei-templates/exposed-panels/phpmyadmin-panel.yaml -u https://mojavedata.gov
 2021-06-05 22:22:14 -04:00
Philippe Delteil 652da29f9a
Update shell-history.yaml 
There are two problems with this template, it only checks for chmod commands but most importantly doesn't check for html tags. A real history file the response doesn't include html tags at all. 

So, I'm adding two rules: Check for another possible commands (from real example) and adding a negative rule to discard false positives like this one:

nuclei -debug -t /home/kali/nuclei-templates/misconfiguration/shell-history.yaml -u http://777.urbanup.com
 2021-06-05 22:06:30 -04:00
Philippe Delteil 9014a4b0a2
Update aws-object-listing.yaml 
Added extractor that retrieves the name of the s3 bucket. 

Test
nuclei -t nuclei-templates/misconfiguration/aws-object-listing.yaml -u http://img.secnews.gr


[2021-06-06 01:19:10] [aws-object-listing] [http] [low] http://imgcdn.secnews.gr [img.secnews.gr]
 2021-06-05 21:27:44 -04:00
Philippe Delteil 888cc6418d
Update smartling-takeover.yaml 
There's no evidence the takeover is possible. Is not possible to create an account or request for a demo. 

https://github.com/EdOverflow/can-i-take-over-xyz/issues/67
 2021-06-05 12:35:27 -04:00
Geeknik Labs f01abd3e6d
Update rails-database-config.yaml 
False positive reduction. 12 matches out of 2 million hosts and they all showed a content-type of `application/octet-stream`.
 2021-06-05 12:50:49 +00:00
sandeep ba0d092d4d Update landingi-takeover.yaml 2021-06-05 09:40:37 +05:30
GitHub Action 8716c7c8a6 Auto Update README [Fri Jun 4 18:35:16 UTC 2021] 🤖 2021-06-04 18:35:16 +00:00
Sandeep Singh c0103e0b8a
Merge pull request #1608 from Mad-robot/master 
Create CVE-2020-6308.yaml
 2021-06-05 00:04:56 +05:30
sandeep 83d359f6cf updating tags 2021-06-05 00:02:33 +05:30
sandeep 11cb8b3106 Update CVE-2020-6308.yaml 2021-06-05 00:00:50 +05:30
sandeep f5addb24c1 misc updates 2021-06-04 23:53:21 +05:30
GitHub Action 7a2f03dcb7 Auto Update README [Fri Jun 4 16:07:44 UTC 2021] 🤖 2021-06-04 16:07:44 +00:00
Sandeep Singh 29e706d101
Merge pull request #1622 from pikpikcu/patch-177 
Create interlib-fileread
 2021-06-04 21:37:23 +05:30
sandeep 5d63b1bb05 Fixing the condition 2021-06-04 21:33:01 +05:30
sandeep 1f6334671c escape fix 2021-06-04 21:26:59 +05:30
GitHub Action b6058200cf Auto Update README [Fri Jun 4 15:44:45 UTC 2021] 🤖 2021-06-04 15:44:45 +00:00
sandeep 1fab4f8dbf Duplicate with - wordpress-directory-listing 2021-06-04 21:14:20 +05:30
GitHub Action 9d8634be33 Auto Update README [Fri Jun 4 15:29:58 UTC 2021] 🤖 2021-06-04 15:29:59 +00:00
Sandeep Singh 9d192ba265
Merge pull request #1628 from projectdiscovery/templates 
Added epson-wf-series
 2021-06-04 20:59:38 +05:30
sandeep 1557b782e9 Added WordPress Popup Plugin listing 2021-06-04 20:57:01 +05:30
sandeep edcc35d604 Added Private key exposure via helper detector 2021-06-04 20:46:19 +05:30
sandeep 76bd8824a5 Added WordPress Mailchimp 4 Debug Log Exposure 2021-06-04 20:36:33 +05:30
sandeep f2e5578ae5 Added LuCi Login Detector 2021-06-04 20:29:36 +05:30
sandeep 5efa716b73 Added epson-wf-series 2021-06-04 20:24:08 +05:30
sandeep e4c1927a2f Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates 2021-06-04 20:00:36 +05:30
sandeep e2555d69d1 minor improvements 2021-06-04 19:59:41 +05:30
GitHub Action f6fb88c537 Auto Update README [Fri Jun 4 14:11:22 UTC 2021] 🤖 2021-06-04 14:11:23 +00:00
Sandeep Singh cf897a11ca
Merge pull request #1627 from projectdiscovery/zend-config-file 
Added zend-config-file
 2021-06-04 19:41:02 +05:30
sandeep b6396aa310 Added zend-config-file 2021-06-04 18:50:38 +05:30
GitHub Action aaa0086868 Auto Update README [Fri Jun 4 11:03:26 UTC 2021] 🤖 2021-06-04 11:03:26 +00:00
Sandeep Singh fe059dc6ce
Merge pull request #1626 from Akokonunes/patch-2 
Create CVE-2021-24316.yaml
 2021-06-04 16:33:10 +05:30
sandeep b138c11548 wordpress workflow update 2021-06-04 16:32:49 +05:30
sandeep 8e13733d34 moving files around 2021-06-04 16:30:31 +05:30
Roberto Nunes 2171f7ec21
Create CVE-2021-24316.yaml 2021-06-04 18:28:45 +09:00
Sandeep Singh fcbe41f23d
Merge pull request #1625 from savushkin-yauheni/savushkin-yauheni-patch-2 
Update ruijie-workflow.yaml
 2021-06-04 12:59:47 +05:30
savik c5b445e1ec
Update ruijie-workflow.yaml 2021-06-04 10:17:20 +03:00
PikPikcU bc9a760d29
Create interlib-fileread.yaml 2021-06-04 02:54:55 +00:00
GitHub Action 8c1c7787af Auto Update README [Thu Jun 3 21:10:16 UTC 2021] 🤖 2021-06-03 21:10:16 +00:00