5adf1866a3
Auto Template Signing [Mon Feb 26 11:57:15 UTC 2024] 🤖
2024-02-26 11:57:15 +00:00
15cbc61e92
Fix FP application-yaml.yaml
2024-02-26 16:23:56 +05:30
087d8760e6
Update and rename http/misconfiguration/screenconnect-authentication-bypass.yaml to http/cves/CVE-2024/CVE-2024-1709.yaml
2024-02-22 00:32:29 +05:30
5145543e89
Auto Template Signing [Wed Feb 21 12:52:37 UTC 2024] 🤖
2024-02-21 12:52:37 +00:00
ee804539f0
Merge pull request #9184 from johnk3r/screenconnect-bypass
...
ScreenConnect Authentication Bypass
2024-02-21 18:20:26 +05:30
ab6bb5ae34
fix matcher
2024-02-21 16:28:31 +05:30
1516cd16a3
Rename screenConnect-authentication-bypass.yaml to screenconnect-authentication-bypass.yaml
2024-02-21 07:52:30 -03:00
a0f0f3f33d
Update screenConnect-authentication-bypass.yaml
2024-02-21 07:45:42 -03:00
b8b24e0323
Create screenConnect-authentication-bypass.yaml
2024-02-21 07:41:25 -03:00
c24ed82080
Auto Template Signing [Wed Feb 21 07:35:06 UTC 2024] 🤖
2024-02-21 07:35:06 +00:00
a4e3988051
updated severity & metadata
2024-02-21 13:00:38 +05:30
ec46b6acf7
ConnectWise Setup Wizard - Exposure
2024-02-21 12:10:43 +05:30
5509ed68d5
Auto Template Signing [Tue Feb 20 18:20:41 UTC 2024] 🤖
2024-02-20 18:20:41 +00:00
42346e7ff6
Merge pull request #9176 from kazet/fewer-fps-avideo
...
Fewer FPs for avideo installer
2024-02-20 23:48:38 +05:30
673db2f9d9
Fewer FPs for avideo installer
2024-02-20 18:05:45 +01:00
7c46896600
Auto Template Signing [Mon Feb 12 18:33:19 UTC 2024] 🤖
2024-02-12 18:33:20 +00:00
652903d374
replaced fuzz tag to brute-force
2024-02-12 23:02:40 +05:30
97450f5a50
Auto Template Signing [Thu Feb 8 06:47:49 UTC 2024] 🤖
2024-02-08 06:47:50 +00:00
61185689c6
Merge pull request #9020 from knavesec/main
...
Add case-insensitive flags to fingerprinthub and tech-detect templates
2024-02-08 12:15:38 +05:30
7f6cfce042
Auto Template Signing [Tue Jan 30 17:04:38 UTC 2024] 🤖
2024-01-30 17:04:39 +00:00
b57c4ceebc
Merge pull request #9044 from t3l3machus/main
...
Add detection for SAP public admin web interface
2024-01-30 22:32:26 +05:30
2880a9a9f0
and condition & additional matcher added
2024-01-30 22:30:01 +05:30
7c5356a93a
Auto Template Signing [Tue Jan 30 10:52:54 UTC 2024] 🤖
2024-01-30 10:52:54 +00:00
5ed6b938ba
Merge pull request #9010 from FLX-0x00/main
...
implement node-express-dev-environment detection template
2024-01-30 16:20:33 +05:30
cd91099e2c
Auto Template Signing [Tue Jan 30 10:49:24 UTC 2024] 🤖
2024-01-30 10:49:25 +00:00
bc89f2ee75
Improving descriptions ( #9048 )
2024-01-30 16:17:24 +05:30
adde990d87
formatting fix
2024-01-30 15:24:28 +05:30
283ec0bc03
Update node-express-dev-env.yaml
2024-01-30 15:23:48 +05:30
863fc27569
updated matcher format & req
2024-01-30 14:14:14 +05:30
42a422d896
added status code and tags
2024-01-30 13:10:14 +05:30
b489a501eb
adjusted gitea detection logic in both standard tech-detect and specific templates. current regex/detect appeared to be insufficient
2024-01-29 19:43:09 -07:00
8bb6fcad4a
Create sap-public-admin.yaml
2024-01-29 19:39:50 +01:00
d1ce7c6527
Auto Template Signing [Mon Jan 29 12:41:50 UTC 2024] 🤖
2024-01-29 12:41:51 +00:00
5c4a72935f
TemplateMan Update [Mon Jan 29 11:58:34 UTC 2024] 🤖
2024-01-29 11:58:34 +00:00
e74af38f8d
Auto Template Signing [Fri Jan 26 15:51:53 UTC 2024] 🤖
2024-01-26 15:51:54 +00:00
bad767850f
Merge pull request #8992 from NxtTAB/main
...
Update IBM Websphere Friendly Path Exposure Template to Reduce False Positives
2024-01-26 21:19:35 +05:30
da43f86301
fix trail space
2024-01-26 21:15:40 +05:30
2f917f065c
Auto Template Signing [Fri Jan 26 08:31:11 UTC 2024] 🤖
2024-01-26 08:31:12 +00:00
12d566e783
Merge pull request #8938 from projectdiscovery/updated-tags
...
Auto Tagged Templates
2024-01-26 13:58:45 +05:30
f9322db69d
Merge branch 'main' into updated-tags
2024-01-26 13:48:21 +05:30
0c0265db7a
add flow in order to detect node.js on express first before sending malicious request
2024-01-25 20:20:00 +01:00
7fec464f96
Auto Template Signing [Thu Jan 25 16:21:22 UTC 2024] 🤖
2024-01-25 16:21:24 +00:00
6e707b4653
Merge pull request #9012 from projectdiscovery/springboot-startup
...
Create springboot-startup.yaml
2024-01-25 21:49:17 +05:30
129fae0047
Revert "Merge branch 'main' into updated-tags"
...
This reverts commit d3c7d73554
2024-01-25 16:52:45 +05:30
d3c7d73554
Merge branch 'main' into updated-tags
2024-01-25 16:49:26 +05:30
51010f90ec
added additional matcher
2024-01-25 16:04:12 +05:30
448e0eb44e
Create springboot-startup.yaml
2024-01-25 15:58:17 +05:30
1a8f497330
linting
2024-01-25 10:42:53 +01:00
b9fc0ddf5e
implement node-express-dev-environment detection template
2024-01-25 10:32:41 +01:00
e1e802d2d9
Create springboot-integrationgraph.yaml
2024-01-25 13:43:41 +05:30
5ced0a8e54
Auto Template Signing [Wed Jan 24 07:16:05 UTC 2024] 🤖
2024-01-24 07:16:06 +00:00
b5b0abcb92
Merge pull request #8971 from kazet/fewer-fps-nuclei-template
...
Fewer FPs in mixed content Nuclei template
2024-01-24 12:44:01 +05:30
b5fdb2f9d6
Update mixed-active-content.yaml
2024-01-24 11:59:58 +05:30
6f16c9a416
Fix false positive: bei redirect to main page using Content-Location
2024-01-23 14:49:12 +01:00
450270035b
Auto Template Signing [Mon Jan 22 07:03:00 UTC 2024] 🤖
2024-01-22 07:03:00 +00:00
8d02bbca75
Create doris-dashboard.yaml
2024-01-22 12:16:26 +05:30
35f9666a28
Auto Template Signing [Fri Jan 19 19:31:09 UTC 2024] 🤖
2024-01-19 19:31:10 +00:00
b07841daed
Update open-proxy-internal.yaml ( #7042 )
...
* Update open-proxy-internal.yaml
The current rule has false positives, and there should be an OR relationship between body2 and body23. The relationship between body2-23 and body1 is and
* updated dsl condition
* Update open-proxy-internal.yaml
---------
Co-authored-by: Prince Chaddha <prince@projectdiscovery.io>
2024-01-20 00:59:10 +05:30
e317aa5677
lint
2024-01-19 11:09:09 +01:00
27fbfcfc52
Fewer FPs in mixed content Nuclei template
2024-01-19 11:03:28 +01:00
9e98d5b5a2
Auto Template Signing [Fri Jan 19 08:44:19 UTC 2024] 🤖
2024-01-19 08:44:19 +00:00
375da070de
misc metadata update
2024-01-19 11:11:43 +05:30
5c5df5873f
Auto Template Signing [Mon Jan 15 11:49:24 UTC 2024] 🤖
2024-01-15 11:49:25 +00:00
8fbfc14ad5
Merge pull request #8897 from iamxhunt3r/main
...
Multiple Template Descriptions are updated.
2024-01-15 17:17:21 +05:30
32cd37a9f4
Auto Template Signing [Sun Jan 14 14:05:19 UTC 2024] 🤖
2024-01-14 14:05:21 +00:00
b0a5d26eae
TemplateMan Update [Sun Jan 14 13:49:26 UTC 2024] 🤖
2024-01-14 13:49:27 +00:00
bdd749d390
auto tagging via templateman
2024-01-14 14:51:50 +05:30
d4bb2105d8
Auto Template Signing [Fri Jan 12 06:44:43 UTC 2024] 🤖
2024-01-12 06:44:43 +00:00
2d0ad42328
Update and rename cookies-without-httponly.yaml to cookies-without-httponly-secure.yaml
2024-01-12 12:05:38 +05:30
5b641161fa
Update cookies-without-httponly.yaml
2024-01-12 11:58:48 +05:30
49be8c61c3
Auto Template Signing [Wed Jan 10 14:36:15 UTC 2024] 🤖
2024-01-10 14:36:15 +00:00
f65e7e8758
Merge pull request #8921 from gtrrnr/patch-5
...
Fix FP on open-proxy-external.yaml
2024-01-10 20:04:00 +05:30
484c109b16
Update open-proxy-external.yaml
2024-01-10 19:35:25 +05:30
789170ae7b
Auto Template Signing [Wed Jan 10 12:33:43 UTC 2024] 🤖
2024-01-10 12:33:44 +00:00
791c429ef5
Merge pull request #8910 from Thabisocn/template_apache-serverstatus
...
Added/apache server status Template
2024-01-10 18:01:19 +05:30
c48eeb5335
Update apache-server-status.yaml
2024-01-10 17:53:57 +05:30
d99a2c1426
updated matcher
2024-01-10 12:29:23 +05:30
e222cf810f
Fix FP on open-proxy-external.yaml
...
Fixes cases when amazon bucket returns 403 with hostid html tag.
Just checking if request to interactsh contains interactsh header.
2024-01-09 16:12:29 +03:00
d8c2fd7fdf
Update apache-server-status.yaml
2024-01-07 00:34:03 +05:30
bae4fdda17
Auto Template Signing [Sat Jan 6 17:17:11 UTC 2024] 🤖
2024-01-06 17:17:11 +00:00
8596512e6a
Merge pull request #8896 from fail-open/patch-1
...
Update ms-exchange-user-enum.yaml
2024-01-06 22:44:43 +05:30
0fda4b428d
Added/apache server status Template
2024-01-05 10:19:03 +02:00
b0ba12766d
Auto Template Signing [Thu Jan 4 06:25:39 UTC 2024] 🤖
2024-01-04 06:25:40 +00:00
69e74d4099
Merge pull request #8901 from projectdiscovery/princechaddha-patch-3
...
Delete http/misconfiguration/httponly-cookie-detect.yaml
2024-01-04 11:53:20 +05:30
6d1da74022
author name addition
2024-01-04 11:45:10 +05:30
86d7efd231
Auto Template Signing [Wed Jan 3 18:44:32 UTC 2024] 🤖
2024-01-03 18:44:33 +00:00
7e4792e378
Merge pull request #8708 from projectdiscovery/princechaddha-patch-4
...
Create php-composer-binary.yaml
2024-01-04 00:12:27 +05:30
ccf24d6ac2
Auto Template Signing [Wed Jan 3 18:35:52 UTC 2024] 🤖
2024-01-03 18:35:53 +00:00
553e7013e1
Update php-composer-binary.yaml
2024-01-04 00:05:05 +05:30
f9f780837e
Create cookies-without-httponly.yaml
2024-01-03 17:08:30 +05:30
742b39ba27
Delete http/misconfiguration/httponly-cookie-detect.yaml
2024-01-03 16:58:32 +05:30
3bcbe6b6b4
updated author name
2024-01-03 16:41:50 +05:30
77f48c5463
Delete http/misconfiguration/gitlab/gitlab-public-registration.yaml
2024-01-03 16:41:22 +05:30
0f8e22ce42
Update gitlab-public-signup.yaml
2024-01-03 16:40:08 +05:30
7260daecbe
Fixed Lint
2024-01-03 11:41:40 +05:30
7753bff4bc
Updated descriptions of templates
2024-01-03 11:38:41 +05:30
3e0dbb20f0
Update php-composer-binary.yaml
2024-01-02 21:02:35 +05:30
9a5cbba7d6
Update ms-exchange-user-enum.yaml
...
handle underscores in extractor
2024-01-02 10:19:48 -05:00
774134ed4e
Auto Template Signing [Tue Jan 2 07:00:19 UTC 2024] 🤖
2024-01-02 07:00:19 +00:00
a571650413
Update symfony-debug.yaml
2024-01-02 11:52:35 +05:30
fe876f803f
Symfony debug improvements
2023-12-29 12:10:07 +01:00
4cf11468bb
Symfony debug improvements
2023-12-29 12:06:03 +01:00
0fa4dde8b2
Auto Template Signing [Fri Dec 22 04:35:43 UTC 2023] 🤖
2023-12-22 04:35:43 +00:00
b978ce22cc
Auto Template Signing [Fri Dec 22 04:15:59 UTC 2023] 🤖
2023-12-22 04:15:59 +00:00
adce7132e7
Merge pull request #8849 from projectdiscovery/h2o-arbitary-file-read
...
Create h2o-arbitary-file-read.yaml
2023-12-22 09:44:43 +05:30
42c2ff93cd
Merge pull request #8855 from projectdiscovery/cdn-cache-poisoning-aes256
...
added cdn-cache-poisoning-aes256
2023-12-22 09:41:40 +05:30
f1d37896b1
misc updates
...
- Added random cache key + random header value + removed request condition as it's enabled as default
- Update severity from medium to unknown as impact is unclear.
2023-12-21 17:31:13 +05:30
2e49a99901
Auto Template Signing [Thu Dec 21 11:29:25 UTC 2023] 🤖
2023-12-21 11:29:26 +00:00
556b6e6e17
Descriptions Updated
2023-12-21 14:51:50 +05:30
930396e11b
Merge branch 'main' into main
2023-12-21 14:50:08 +05:30
d189a2a70c
added cdn-cache-poisoning-aes256
2023-12-21 14:38:05 +05:30
619eb13c82
Auto Template Signing [Thu Dec 21 07:28:05 UTC 2023] 🤖
2023-12-21 07:28:06 +00:00
ab9015b522
Update h2o-dashboard.yaml
2023-12-21 12:49:50 +05:30
35814bc7ca
Descriptions Updated
2023-12-21 11:33:02 +05:30
815106524d
Merge branch 'main' into main
2023-12-21 11:13:20 +05:30
9d6f076894
Create h2o-dashboard.yaml
2023-12-20 23:37:06 +05:30
326c8c4e0e
Create h2o-arbitary-file-read.yaml
2023-12-20 23:35:52 +05:30
38b95a71a9
Auto Template Signing [Wed Dec 20 07:45:21 UTC 2023] 🤖
2023-12-20 07:45:22 +00:00
ad0be35d32
Merge pull request #8810 from projectdiscovery/espocrm-installer
...
Create espocrm-installer.yaml
2023-12-20 13:13:14 +05:30
3fd4e58e88
Update espocrm-installer.yaml
2023-12-20 13:01:20 +05:30
ac9139fcf4
Auto Template Signing [Wed Dec 20 05:06:17 UTC 2023] 🤖
2023-12-20 05:06:18 +00:00
945518028e
Merge pull request #8830 from bhutch/locust-exposure
...
Update locust-exposure.yaml
2023-12-19 19:47:31 +05:30
3ef4f0f32c
Merge branch 'main' into main
2023-12-18 12:52:40 +05:30
e6c20a24de
Auto Template Signing [Sun Dec 17 07:31:03 UTC 2023] 🤖
2023-12-17 07:31:04 +00:00
f3486fdd72
Added active / passive mixed content check template ( #8838 )
...
* Added http-third-party-scripts-check template
* Update http-third-party-scripts-check.yaml
removing addtional blank lines
* added more matchers for other active resources + extractors
* added template for passive mixed content as well
---------
Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-12-17 12:58:50 +05:30
eb299fcaa0
Update locust-exposure.yaml
2023-12-14 18:58:57 +00:00
872b3ed7c1
Auto Template Signing [Thu Dec 14 17:07:02 UTC 2023] 🤖
2023-12-14 17:07:03 +00:00
8fccbfa67b
Update misconfigured-docker.yaml
...
Fix a typo that prevents the plugin to detect the vulnerability
2023-12-14 15:56:29 +01:00
10b48ef150
Merge branch 'main' into main
2023-12-13 18:51:54 +05:30
892e358a32
Auto Template Signing [Wed Dec 13 09:26:56 UTC 2023] 🤖
2023-12-13 09:26:57 +00:00
80b8b88e8a
Merge pull request #8800 from projectdiscovery/unauth-celery-flower
...
fixed weak matcher
2023-12-13 14:54:50 +05:30
998b3b36ac
Auto Template Signing [Wed Dec 13 09:19:58 UTC 2023] 🤖
2023-12-13 09:19:59 +00:00
bec548847e
Added woodwing templates
2023-12-13 01:50:01 +05:30
3ed47af981
Create espocrm-installer.yaml
2023-12-12 21:54:57 +05:30
7cb786c648
Auto Template Signing [Tue Dec 12 12:02:03 UTC 2023] 🤖
2023-12-12 12:02:04 +00:00
3961cfc660
TemplateMan Update [Tue Dec 12 11:07:51 UTC 2023] 🤖
2023-12-12 11:07:52 +00:00
206b7ba6b8
Updated Descriptions
2023-12-11 21:48:47 +05:30
cb3027fc3e
Updated Descriptions
2023-12-11 21:05:41 +05:30
a5a9cbeb80
fixed weak matcher
2023-12-11 19:48:07 +05:30
62712435cd
Auto Template Signing [Mon Dec 4 08:06:38 UTC 2023] 🤖
2023-12-04 08:06:39 +00:00
45d5673729
Create secnet-info-leak.yaml
2023-12-04 12:38:49 +05:30
f02895db49
Auto Template Signing [Mon Dec 4 03:35:37 UTC 2023] 🤖
2023-12-04 03:35:37 +00:00
d62962c61a
Merge pull request #8741 from projectdiscovery/wowcms-installer
...
Create wowcms-installer.yaml
2023-12-04 09:03:36 +05:30
81761a2f29
Auto Template Signing [Mon Dec 4 03:33:10 UTC 2023] 🤖
2023-12-04 03:33:10 +00:00
d8792c262a
Merge pull request #8742 from projectdiscovery/businesso-installer
...
Create businesso-installer.yaml
2023-12-04 09:01:05 +05:30
8306b012d7
Auto Template Signing [Mon Dec 4 03:26:59 UTC 2023] 🤖
2023-12-04 03:27:00 +00:00
5775b73097
Merge pull request #8743 from projectdiscovery/knowledgetree-installer
...
Create knowledgetree-installer.yaml
2023-12-04 08:54:54 +05:30
0ed8d793e9
Auto Template Signing [Mon Dec 4 03:24:33 UTC 2023] 🤖
2023-12-04 03:24:33 +00:00
74dfc258cf
Merge pull request #8744 from projectdiscovery/phpgedview-installer
...
Create phpgedview-installer.yaml
2023-12-04 08:52:18 +05:30
5f9658a80b
Auto Template Signing [Sat Dec 2 14:20:04 UTC 2023] 🤖
2023-12-02 14:20:04 +00:00
GitHub Action
Ritik Chaddha
Dhiyaneshwaran
pussycat0x
johnk3r
Krzysztof Zając
Prince Chaddha
Ellis Springe
Panagiotis Chartas
Ritik Chaddha
Paul Werther
Prince Chaddha
Thomas Baisley
sea-god
Krzysztof Zając
sandeep
gtrrnr
Thabisocn
Vikas Gupta
fail-open
Vikas Gupta
Liwermor
Brandon Hutchinson
brightio