Commit Graph

12633 Commits (7cd7940f8e60249c571540e2b2ff64e29e7bd3b8)

Author SHA1 Message Date
Sachin Grover 68450463c2 Add directory traversal CVE-2020-5410 affecting Spring Cloud Config Server 2020-06-18 10:16:29 +00:00
bauthard 04446b2df8
Update tomcat.yaml 2020-06-18 11:34:17 +05:30
bauthard c3b11a3c32
Merge pull request #143 from ahmedsherif/master
add tomcat manager disclosure (authenticated)
2020-06-18 11:33:15 +05:30
Ahmed Eldemrdash 98ea151577 add tomcat manager disclosure (authenticated) 2020-06-18 04:27:31 +02:00
bauthard 48e9534630
Removing CVE-2020-7473
I will try to find a more stable syntax and will add it again.
2020-06-18 00:00:00 +05:30
bauthard 08c7e0588e
id-update 2020-06-17 22:43:31 +05:30
bauthard 18b070df2b
Merge pull request #141 from Senanfurkan/docker-api-detect
Exposed Docker API added
2020-06-17 22:42:45 +05:30
bauthard 73ea6adfe3
updating id 2020-06-17 22:41:32 +05:30
bauthard 12d34b7c8e
Merge pull request #142 from bbabacan/detect-kubernetes-pods
kubernetes pods detection
2020-06-17 22:40:13 +05:30
Berke Babacan 02d4c133db kubernetes pods detection 2020-06-17 18:56:34 +03:00
furkansenan c7e650454a Exposed Docker API addeed 2020-06-17 15:28:37 +00:00
bauthard 3e92ffb1cf
Merge pull request #140 from maverickNerd/master
Added CVE-2018-1000130, also added port 8080 in the detection script
2020-06-17 14:58:57 +05:30
Sachin Grover 95186715e1 Merge branch 'master' of https://github.com/maverickNerd/nuclei-templates 2020-06-17 09:19:28 +00:00
Sachin Grover fea47dd3f5 Add CVE-2018-1000129 and version detection is enabled for port 8080 also 2020-06-17 09:18:49 +00:00
Sachin Grover d670afe17e Add CVE-2018-1000129 and version detection is enabled for port 8080 also 2020-06-17 09:16:11 +00:00
bauthard 6729525315
Update README.md 2020-06-17 14:26:47 +05:30
bauthard d094b1ecdc
Merge pull request #139 from maverickNerd/master
Add support for detecting Jolokia instance
2020-06-17 14:21:36 +05:30
bauthard 69893c6061
readme update 2020-06-17 14:20:42 +05:30
Sachin Grover dcca80188d Correct yamllint error 2020-06-17 08:49:52 +00:00
Sachin Grover 320d1d5850 Add support for detecting Jolokia instance 2020-06-17 08:19:14 +00:00
bauthard 1009f2762d
Merge pull request #137 from ca3s1m/master
Statuspage removed
2020-06-12 12:02:17 +05:30
caesim b59915c4ae
Statuspage removed 2020-06-11 22:40:38 +02:00
bauthard db896dfb75
Removing ActiveCampaign
No active POC to validate the takeover.
2020-06-11 20:41:10 +05:30
bauthard d11c305912
Merge pull request #135 from organiccrap/master
Sophos firewall detection
2020-06-05 22:49:35 +05:30
organiccrap 26b0716878 Sophos firewall detection 2020-06-06 01:01:23 +08:00
bauthard 0e99d6e803
Merge pull request #134 from fabaff/compal
Add support for detecting Compal CH7465LG devices
2020-06-05 18:03:46 +05:30
Fabian Affolter e46c0e558c
Add support for detecting Compal CH7465LG devices 2020-06-05 12:45:48 +02:00
bauthard a7479892d1
Merge pull request #133 from bauthard/master
added debug-pprof
2020-06-03 18:36:04 +05:30
bauthard 16877f6954
added debug-pprof 2020-06-03 18:35:33 +05:30
bauthard 213adb3022
Merge pull request #132 from hetroublemaker/patch-2
Create CVE-2018-1271.yaml
2020-06-03 06:26:39 +05:30
Aditya Soni d72794b4d8
Create CVE-2018-1271.yaml 2020-06-03 06:23:25 +05:30
bauthard 1420758797
Merge pull request #131 from hetroublemaker/patch-1
Update rce-shellshock-user-agent.yaml
2020-06-03 05:40:41 +05:30
Aditya Soni 1ccc5d2b53
Update rce-shellshock-user-agent.yaml 2020-06-03 05:38:36 +05:30
bauthard a8f8a357ab
Merge pull request #130 from vzamanillo/rack-miniprofiler-missconfiguration
rack-mini-profiler environment information discloure detection template
2020-06-02 11:09:42 +05:30
Víctor Zamanillo 18592de7f9 Typo in gem name 2020-06-01 20:47:29 +02:00
bauthard b2c3b97916
Merge pull request #129 from EdOverflow/security-txt
Add top-level directory check for security.txt
2020-06-01 18:18:42 +05:30
EdOverflow 27b5726000 Add top-level directory check for security.txt
security.txt files can be placed under the top-level directory too.
This commit adds a check for:

    https://example.com/security.txt
2020-06-01 14:25:40 +02:00
Víctor Zamanillo 5a8dc91f52 rack-mini-profiler environment information discloure detection template
Ruby Rack based web applications using rack-mini-profiler without access control can show application’s environment details
2020-05-31 17:39:48 +02:00
bauthard 8b2bc8ab8e
Merge pull request #127 from xElkomy/patch-1
Create rce-shellshock-user-agent.yaml
2020-05-28 21:07:54 +05:30
Khaled Mohamed b390ffa076
Create rce-shellshock-user-agent.yaml 2020-05-28 17:20:00 +02:00
Ice3man 4480395e5c
Update open-redirect.yaml 2020-05-27 22:24:32 +05:30
Ice3man 1a558c820b
Update crlf-injection.yaml 2020-05-27 21:40:32 +05:30
Ice3man 0ae2fe3c85
Better regex for CRLF injection that catches whitespaces 2020-05-27 21:38:40 +05:30
bauthard 386b4b0f07 Merge pull request #125 from fabaff/webserver
Add more servers
2020-05-27 14:51:33 +05:30
Fabian Affolter f91db35304
Add more servers 2020-05-27 11:16:45 +02:00
bauthard e7a60ff23f updating file name 2020-05-27 14:40:52 +05:30
bauthard 57f5c32a4c
Merge pull request #124 from fabaff/cdn
Support for detecting content delivery networks (CDNs)
2020-05-27 14:40:22 +05:30
bauthard 3d4cc7877b
Merge pull request #123 from fabaff/typo
Fix typo
2020-05-27 14:39:28 +05:30
Fabian Affolter bb0c5f5427
Support for detecting content delivery networks (CDNs) 2020-05-27 10:58:12 +02:00
Fabian Affolter cf805d1f50
Fix typo 2020-05-27 10:57:33 +02:00