Manas
d471642340
Wp-user
...
If this endpoint is misconfigured, we can enumerate Wordpress admins and their userID.
2020-06-30 01:49:40 +05:30
bauthard
01378933c6
Update CVE-2020-12720.yaml
2020-06-29 19:25:45 +05:30
bauthard
75e2166cc5
updating CVE-2020-12720
2020-06-29 19:24:56 +05:30
bauthard
4eee21265b
Delete .DS_Store
2020-06-28 02:29:49 +05:30
bauthard
bc9a6736c2
updating file name
2020-06-28 02:13:57 +05:30
bauthard
0043043f12
Merge pull request #155 from udit-thakkur/patch-2
...
Detect exposed .svn Directory
2020-06-28 02:13:16 +05:30
Udit Bhadauria
73622a256a
Update exposed-svn
2020-06-28 00:19:52 +05:30
Udit Bhadauria
8dd580dca4
Detect exposed .svn Directory
...
Provides a way to detect the version control instance - exposed .svn directory.
2020-06-27 18:30:25 +05:30
bauthard
91cd0e1ec4
updating template details
2020-06-27 12:25:14 +00:00
bauthard
3d8b9d7e5b
Merge pull request #154 from udit-thakkur/patch-1
...
Detect wordpress xmlrpc (sometimes leads to ssrf)
2020-06-27 17:52:56 +05:30
Udit Bhadauria
d58974c479
Detect wordpress xmlrpc (sometimes get ssrf)
...
Provides a way to detect the wordpress xmlrpc endpoint that can help and leads to possible ssrf sometimes.
I am not sure if it is worth to add. But I have got a few good findings using this.
Let me know if I'm doing it right, You guys are doing great work, Love this project. Kudos..!
Trying to contribute a little.
2020-06-27 17:14:59 +05:30
bauthard
3b8e5ae229
Added Wappalyzer Technology Detection
...
Ported hakluke PR into single template
2020-06-27 16:39:16 +05:30
bauthard
084a745600
added CVE-2020-8512
2020-06-26 09:14:54 +05:30
bauthard
d7a5af2b28
updating severity of multiple templates
2020-06-25 02:37:58 +05:30
bauthard
7372b169f8
Merge pull request #153 from manuelbua/detect-linkerd-service
...
Initial Linkerd service detection rules
2020-06-23 03:36:00 +05:30
bauthard
2d56871bd0
Update CVE-2019-3799.yaml
2020-06-23 03:22:51 +05:30
bauthard
2d8efb04ba
Update CVE-2018-20824.yaml
2020-06-23 03:21:54 +05:30
bauthard
d8a79274ae
Update CVE-2018-19439.yaml
2020-06-23 03:17:00 +05:30
Manuel Bua
410423834c
Tweak flags
2020-06-22 23:41:24 +02:00
Manuel Bua
19edc73166
Fix formatting
2020-06-22 23:31:30 +02:00
Manuel Bua
c5fc99af49
Add rules Linkerd service detection
2020-06-22 23:25:52 +02:00
Ice3man
e9c23dffe0
Merge pull request #126 from projectdiscovery/iceman-regex-fix
...
Regex issues fix by simplifying and fixing some edge cases
2020-06-22 08:36:29 -07:00
Ice3man
445ddf6002
Merge pull request #152 from manuelbua/iceman-regex-fix
...
Handle some more edge cases in crlf-injection and open-redirect tests
2020-06-22 08:35:33 -07:00
bauthard
b7103a2197
Pushing newly added cves
2020-06-22 19:05:37 +05:30
Manuel Bua
7df644ed6a
Handle more spacing edge-cases, anchor at end of line
2020-06-22 13:15:01 +02:00
Manuel Bua
15fa8f2244
Switch to multiline matching to avoid false positives
2020-06-22 12:26:30 +02:00
Manuel Bua
c7262c3ee7
Handle spaces in non-standard response headers
2020-06-22 10:55:52 +02:00
dudez
4ec258bd16
Handle protocol-relative URL in redirects
2020-06-22 10:02:43 +02:00
bauthard
32d9373273
adding more path with recent PR
2020-06-22 03:50:29 +05:30
Manuel Bua
c08676116c
Handle some more edge cases
2020-06-21 23:04:37 +02:00
bauthard
c120a00735
Merge pull request #149 from bsysop/master
...
Add Fortinet FortiGate VPN panel template
2020-06-21 01:23:00 +05:30
bsysop
a4ed54453b
Add Fortinet FortiGate VPN panel template
2020-06-20 16:45:16 -03:00
bauthard
f432598a93
Merge pull request #148 from bsysop/master
...
Add Pulse Secure VPN panel template
2020-06-21 01:09:57 +05:30
bsysop
f4fbc50186
Add Pulse Secure VPN panel template
2020-06-20 16:38:15 -03:00
bauthard
42e72ff843
added Tomcat Exposed Scripts detection
2020-06-20 16:02:29 +05:30
bauthard
80e2ee5bb4
Merge pull request #146 from mohammedshine/patch-1
...
Create elasticsearch.yaml
2020-06-20 13:16:08 +05:30
mohammedshine
0f73d7b9fb
Create elasticsearch.yaml
2020-06-20 05:07:41 +05:30
bauthard
3b3ab42984
Merge pull request #144 from maverickNerd/master
...
Add directory traversal CVE-2020-5410 affecting Spring Cloud Config
2020-06-18 16:48:30 +05:30
Sachin Grover
68450463c2
Add directory traversal CVE-2020-5410 affecting Spring Cloud Config Server
2020-06-18 10:16:29 +00:00
bauthard
04446b2df8
Update tomcat.yaml
2020-06-18 11:34:17 +05:30
bauthard
c3b11a3c32
Merge pull request #143 from ahmedsherif/master
...
add tomcat manager disclosure (authenticated)
2020-06-18 11:33:15 +05:30
Ahmed Eldemrdash
98ea151577
add tomcat manager disclosure (authenticated)
2020-06-18 04:27:31 +02:00
bauthard
48e9534630
Removing CVE-2020-7473
...
I will try to find a more stable syntax and will add it again.
2020-06-18 00:00:00 +05:30
bauthard
08c7e0588e
id-update
2020-06-17 22:43:31 +05:30
bauthard
18b070df2b
Merge pull request #141 from Senanfurkan/docker-api-detect
...
Exposed Docker API added
2020-06-17 22:42:45 +05:30
bauthard
73ea6adfe3
updating id
2020-06-17 22:41:32 +05:30
bauthard
12d34b7c8e
Merge pull request #142 from bbabacan/detect-kubernetes-pods
...
kubernetes pods detection
2020-06-17 22:40:13 +05:30
Berke Babacan
02d4c133db
kubernetes pods detection
2020-06-17 18:56:34 +03:00
furkansenan
c7e650454a
Exposed Docker API addeed
2020-06-17 15:28:37 +00:00
bauthard
3e92ffb1cf
Merge pull request #140 from maverickNerd/master
...
Added CVE-2018-1000130, also added port 8080 in the detection script
2020-06-17 14:58:57 +05:30