daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
1,781 Commits
12 Branches
0 Tags
148 MiB
Commit Graph

162 Commits (707fe433a7934178db0ca0a4d029ff57876c40ff)

Author SHA1 Message Date
bauthard 6150241583 Update sql-dump.yaml 2020-09-05 12:25:52 +05:30
Geeknik Labs 3f6f57c13d
Update sql-dump.yaml 2020-09-04 23:15:32 +00:00
Geeknik Labs 64b9ad0ab5
Update sql-dump.yaml 
le sigh 😠
 2020-09-04 22:51:10 +00:00
Geeknik Labs fb45f53f47
Update sql-dump.yaml 2020-09-04 22:47:40 +00:00
Geeknik Labs 91536ea457
Update sql-dump.yaml 2020-09-04 22:44:36 +00:00
Geeknik Labs 1be24f3777
Update sql-dump.yaml 2020-09-04 22:41:29 +00:00
Geeknik Labs 9bd62e6922
Create sql-dump.yaml 
A generic search for mysql dump or backup files.
 2020-09-04 22:38:46 +00:00
bauthard 037dd7b3e5 Update git-config.yaml 2020-09-02 12:48:50 +05:30
bauthard fa9356e0a4 Update error-logs.yaml 2020-09-01 23:17:41 +05:30
Geeknik Labs 3753bb4512
Create error-logs.yaml 
Generic check for miscellaneous error logs laying about.
 2020-09-01 16:53:55 +00:00
bauthard 34d5f1c586 Update robots.txt.yaml 2020-08-31 22:47:14 +05:30
Casper Guldbech Nielsen c833fd9da0 Adding robots.txt as file module 
Signed-off-by: Casper Guldbech Nielsen <whopsec@protonmail.com>
 2020-08-31 17:25:09 +02:00
Dwi Siswanto c86aff5498 🔨 Add regex matcher for time_local at body 2020-08-31 17:35:45 +07:00
bauthard 81836ffec1
Merge pull request #371 from geraldino2/master 
Add checks for public Wordpress debug.log
 2020-08-30 21:28:44 +05:30
bauthard 6357461ef3 Update wordpress-debug-log.yaml 2020-08-30 21:27:24 +05:30
Gabriel Geraldino f7e807b024
Create wordpress-debug-log.yaml 2020-08-30 12:41:22 -03:00
bauthard 841c47d7f6 Update wordpress-directory-listing.yaml 2020-08-30 20:38:55 +05:30
Gabriel Geraldino ad6897e9c2
Update wordpress-directory-listing.yaml 
Add other paths susceptible to directory listing.
 2020-08-30 12:03:04 -03:00
ohlinge 931e518e55 Add druid monitor detect 2020-08-30 12:32:35 +08:00
Dwi Siswanto 82db40f706 💬 Add references 2020-08-29 19:15:51 +07:00
toufik-airane 79ccce2ae4
add few descriptions 
add few descriptions and references on /vulnerabilities/ templates.
 2020-08-25 21:43:43 +02:00
bauthard 776ec5c22a Update ds_store.yaml 2020-08-21 16:39:30 +05:30
Oways bf15679e10
Create ds_store.yaml 2020-08-21 13:51:02 +03:00
bauthard 2b5e991df2 cve update 2020-08-19 20:12:29 +05:30
un-fmunozs 5fabd1558a Update tomcat-scripts.yaml 
Fix spaces
 2020-08-18 23:37:24 -05:00
un-fmunozs 8f3bcc43fc Update tomcat-scripts.yaml 
Add websocket url and Orange-Tsai Path Normalization trick
 2020-08-18 23:33:05 -05:00
GwanYeong Kim 963fa59eba Fix small typo 2020-08-17 13:44:01 +09:00
bauthard b48dc3b9c3 Update wadl-files.yaml 2020-08-07 01:21:37 +05:30
Manuel Bua 378373a5b8 Remove WSDL check, add additional checks 2020-08-06 21:10:09 +02:00
bauthard c30dc25289 uniform severity update 2020-08-04 03:22:00 +05:30
eschultze 8a14a1cf78
Fix small typo 2020-07-31 17:18:26 -03:00
bauthard eea177a203 Update lazy-file.yaml 2020-07-31 14:08:08 +05:30
bauthard 3fd163e6c8
Merge pull request #262 from eugui/patch-2 
Create lazy-file.yaml
 2020-07-28 20:20:15 +05:30
bauthard 094ebe18bf correcting matcher rule 2020-07-28 20:14:34 +05:30
bauthard 8ce1575736 Update filezilla.yaml 2020-07-28 19:42:45 +05:30
d[-_-]b 91f1ffa23a
Create filezilla.yaml 2020-07-27 08:25:54 +01:00
d[-_-]b d95039f26f
Create lazy-file.yaml 2020-07-26 20:29:04 +01:00
bauthard eae2f9fd72
Merge pull request #258 from yashanand/master 
Added htaccess templates
 2020-07-26 03:39:02 +05:30
bauthard 87f5e61d2c updates 2020-07-26 03:36:57 +05:30
bauthard b0383dc5e0
Merge pull request #256 from mohammedshine/patch-2 
Create kibana.yaml
 2020-07-24 15:44:23 +05:30
bauthard fd39140c7d template update 2020-07-24 15:43:10 +05:30
bauthard 80148dfc80 Update web-config.yaml 2020-07-24 15:34:43 +05:30
bauthard f94a25fb6d template update 2020-07-24 15:32:27 +05:30
mohammedshine 0c73694da8
Update kibana.yaml 2020-07-24 14:56:14 +05:30
mohammedshine c642f06f63
Create kibana.yaml 2020-07-24 14:52:22 +05:30
Charles Holtzkampf ea663fbce5
Add description 2020-07-15 09:10:17 +01:00
bauthard 292197f823
Merge pull request #231 from dwisiswant0/fix-false-positives 
Fix from False-positive Results
 2020-07-11 03:33:19 +05:30
Dwi Siswanto 3a2ecdf809 🔨 Fix jolokia-instance from false-positives 2020-07-11 03:04:58 +07:00
bauthard de35ddc8a5
Update telerik-dialoghandler-detect.yaml 2020-07-10 15:37:53 +05:30
dw1 a4f05086d0 🔨 Fix false-positives laravel-env 2020-07-09 03:54:41 +07:00
Ice3man543 ed4e9e7feb Fixed default condition OR to AND in false-positives 2020-07-08 17:08:57 +05:30
bauthard da431b0aa7
Update elasticsearch.yaml 2020-07-08 14:15:37 +05:30
bsysop 8a221a61e0
Rename wordpress-user-enumaration.yaml to wordpress-user-enumeration.yaml 
Typo fix
 2020-07-05 10:14:24 -03:00
bauthard 3914856fab
Merge pull request #176 from dwisiswant0/development 
Update conditions & regexes for exposed-svn
 2020-07-03 11:56:08 +05:30
dw1 7760d4f172 🔨 Update conditions & regexes for exposed-svn. Fixes #175 2020-07-03 10:26:33 +07:00
bauthard 72f3939981 syntax updates 2020-07-02 18:11:53 +00:00
organiccrap 2d8c78c263 updates 2020-07-02 21:53:41 +08:00
dw1 43c90fc616 ✏️ Fix misplaced regex & escaping regexes 2020-07-02 18:56:51 +07:00
dw1 4a140eaeec 🔧 Update exposed-svn regexes & request paths 2020-07-02 18:31:10 +07:00
dw1 19cbaad130 🔧 Update exposed-svn matchers 2020-07-02 18:26:21 +07:00
bauthard b369c971dc
Update and rename tomcat.yaml to public-tomcat-instance.yaml 2020-07-01 11:36:04 +05:30
bauthard 757bea2468
adding wordpress-directory-listing 2020-06-30 17:06:10 +05:30
bauthard 12bff93ab2
Update and rename Wp-user to wordpress-user-enumaration.yaml 2020-06-30 10:30:57 +05:30
Manas d471642340
Wp-user 
If this endpoint is misconfigured, we can enumerate Wordpress admins and their userID.
 2020-06-30 01:49:40 +05:30
bauthard bc9a6736c2
updating file name 2020-06-28 02:13:57 +05:30
Udit Bhadauria 73622a256a
Update exposed-svn 2020-06-28 00:19:52 +05:30
Udit Bhadauria 8dd580dca4
Detect exposed .svn Directory 
Provides a way to detect the version control instance - exposed .svn directory.
 2020-06-27 18:30:25 +05:30
bauthard 91cd0e1ec4 updating template details 2020-06-27 12:25:14 +00:00
bauthard d7a5af2b28 updating severity of multiple templates 2020-06-25 02:37:58 +05:30
bauthard 42e72ff843
added Tomcat Exposed Scripts detection 2020-06-20 16:02:29 +05:30
mohammedshine 0f73d7b9fb
Create elasticsearch.yaml 2020-06-20 05:07:41 +05:30
bauthard 04446b2df8
Update tomcat.yaml 2020-06-18 11:34:17 +05:30
Ahmed Eldemrdash 98ea151577 add tomcat manager disclosure (authenticated) 2020-06-18 04:27:31 +02:00
Sachin Grover fea47dd3f5 Add CVE-2018-1000129 and version detection is enabled for port 8080 also 2020-06-17 09:18:49 +00:00
Sachin Grover dcca80188d Correct yamllint error 2020-06-17 08:49:52 +00:00
Sachin Grover 320d1d5850 Add support for detecting Jolokia instance 2020-06-17 08:19:14 +00:00
bauthard 16877f6954
added debug-pprof 2020-06-03 18:35:33 +05:30
EdOverflow 27b5726000 Add top-level directory check for security.txt 
security.txt files can be placed under the top-level directory too.
This commit adds a check for:

    https://example.com/security.txt
 2020-06-01 14:25:40 +02:00
Fabian Affolter 9842717dc9
Update syntax 2020-05-25 10:02:27 +02:00
bauthard 8ed968e713
added multiple checks for the accuracy 
source of added checks https://docs.docker.com/registry/spec/api/
 2020-05-24 08:48:40 +05:30
bauthard 6e09244b46
added status check and updated id name 2020-05-24 08:34:00 +05:30
bauthard ff76675887
adding status, and updated id-name 2020-05-24 08:14:48 +05:30
bauthard c105a35fcd
Merge pull request #99 from Pxmme/master 
Create laravel-env.yaml
 2020-05-24 08:09:39 +05:30
Pxmme 29774ea143
Create laravel-env.yaml 2020-05-23 20:09:25 +02:00
bauthard 49b45dc2dc
updating name 2020-05-15 01:55:12 +05:30
bad5ect0r 572105b16a
Add more strict rules for security.txt 
Previous one had a few false positives. This should narrow that down.
 2020-05-08 21:41:26 +10:00
bad5ect0r 4565f42799
Detect security.txt file. 
Detect if a site supports responsible disclosure with a security.txt file: https://securitytxt.org/
 2020-05-08 21:06:57 +10:00
Koti Reddy Aluri 27a9823a35
Update apc_info.yaml 2020-05-04 13:43:13 +05:30
Koti Reddy Aluri c90ad5c220
Update apc_info.yaml 2020-05-04 11:56:35 +05:30
Koti Reddy Aluri d16b84ed20
apc_info.yaml 
Refrence:
http://pecl.php.net/package/APCu
 2020-05-04 11:53:34 +05:30
NkxxkN 412aca1593 add redirects to support Drupal < 8.0.0 2020-04-23 12:34:51 +00:00
toufik-airane be1dbf169d
change id 2020-04-22 16:55:53 +02:00
toufik-airane afabaddf0c
fix bz2 false-positive 
- Fix minor issue with bz2 by strengthening the magic number
- Add the status 200 filter
- Change link to github.com.
 2020-04-22 16:52:54 +02:00
organiccrap 413c126c29 pending pull 2020-04-22 14:42:01 +08:00
bauthard 3bd6b44807
Updating the template name. 2020-04-22 04:25:04 +05:30
toufik-airane 612e35dfba
add zip-files.yaml 
Scan for potential compressed web folder at the root level of the target.
Scan for few extensions and valid magic numbers for reliability.
 2020-04-21 21:26:15 +02:00
bauthard 642e3ec2d5
Merge pull request #41 from NkxxkN/NkxxkN/drupal-install 
Add Drupal  Install
 2020-04-21 20:59:34 +05:30
Kevin Antoine 32459a5e35 rename drupal file & change template id & move to files folder 2020-04-21 17:25:13 +02:00
bauthard 36d35d802e
Addded JK Status Manager 2020-04-21 16:02:32 +05:30
Antoine Roly d0cc5fccee
Update dir-listing.yaml 
On IIS, there is no "Index of /" but the webpage contains the URL and a link to the parent directory "[To Parent Directory]" when directory listing is enabled.
 2020-04-15 10:00:08 +02:00