Commit Graph

1531 Commits (864326c47d13b8be045b021e0aa68c6aad302e2c)

Author SHA1 Message Date
MostInterestingBotInTheWorld 6265153b6e Enhancement: exposures/configs/robomongo-credential.yaml by md 2023-02-23 14:46:31 -05:00
MostInterestingBotInTheWorld 1292f0aa5a Enhancement: exposures/configs/redis-config.yaml by md 2023-02-23 14:41:12 -05:00
MostInterestingBotInTheWorld 25d44b68ce Enhancement: exposures/configs/rails-database-config.yaml by md 2023-02-23 14:39:52 -05:00
MostInterestingBotInTheWorld 5a868d1e15 Enhancement: exposures/configs/pubspec-config.yaml by md 2023-02-23 14:37:05 -05:00
MostInterestingBotInTheWorld 705f50bd98 Enhancement: exposures/configs/proxy-wpad-exposure.yaml by md 2023-02-23 14:32:17 -05:00
MostInterestingBotInTheWorld 92f1cbaf34 Enhancement: exposures/configs/prometheus-metrics.yaml by md 2023-02-23 14:29:46 -05:00
MostInterestingBotInTheWorld 3d156a5f3d Enhancement: exposures/configs/proftpd-config.yaml by md 2023-02-23 14:26:42 -05:00
MostInterestingBotInTheWorld 1241ccaf17 Enhancement: exposures/configs/proftpd-config.yaml by md 2023-02-23 14:26:00 -05:00
MostInterestingBotInTheWorld e29a237f35 Enhancement: exposures/configs/prometheus-metrics.yaml by md 2023-02-23 14:25:41 -05:00
MostInterestingBotInTheWorld 6f0d1639e2 Enhancement: exposures/configs/kyan-credential-exposure.yaml by md 2023-02-22 16:25:27 -05:00
MostInterestingBotInTheWorld 8dd29484ce Enhancement: exposures/configs/plesk-stat.yaml by md 2023-02-22 16:22:05 -05:00
MostInterestingBotInTheWorld bd879770b2 Enhancement: exposures/configs/pre-commit-config.yaml by md 2023-02-22 16:15:22 -05:00
MostInterestingBotInTheWorld 979c03b147 Enhancement: exposures/configs/phpstan-config.yaml by md 2023-02-22 16:00:02 -05:00
MostInterestingBotInTheWorld b5b5b50701 Enhancement: exposures/configs/phpinfo-files.yaml by md 2023-02-22 15:57:45 -05:00
MostInterestingBotInTheWorld dc3e55816c Enhancement: exposures/configs/php-fpm-config.yaml by md 2023-02-22 15:43:31 -05:00
MostInterestingBotInTheWorld afcd1a3bdc Enhancement: exposures/configs/perl-status.yaml by md 2023-02-22 15:38:50 -05:00
MostInterestingBotInTheWorld 4fb10c7e4a Enhancement: exposures/configs/ovpn-config-exposed.yaml by md 2023-02-22 15:28:37 -05:00
MostInterestingBotInTheWorld f480b327fb Enhancement: exposures/configs/oracle-ebs-credentials.yaml by md 2023-02-22 15:26:37 -05:00
MostInterestingBotInTheWorld a297a34560 Enhancement: exposures/configs/oracle-cgi-printenv.yaml by md 2023-02-22 15:04:45 -05:00
MostInterestingBotInTheWorld 8b8cd901ef Enhancement: exposures/configs/opcache-status-exposure.yaml by md 2023-02-22 14:57:22 -05:00
MostInterestingBotInTheWorld fa25c288e9 Enhancement: exposures/configs/nagios-status-page.yaml by md 2023-02-22 14:50:16 -05:00
MostInterestingBotInTheWorld b7798864dc Enhancement: exposures/configs/magento-config-disclosure.yaml by md 2023-02-22 14:48:03 -05:00
MostInterestingBotInTheWorld 1391a88b7b Enhancement: exposures/configs/kyan-credential-exposure.yaml by md 2023-02-22 14:38:59 -05:00
Dhiyaneshwaran d91fa8d223
Merge pull request #6741 from Devang-Solanki/main
Added secret detectors for FCM API keys, mapbox API keys, razorpay client id, zapier webhooks
2023-02-16 18:05:49 +05:30
Dhiyaneshwaran b206a1f764
Update razorpay-clientid-disclosure.yaml 2023-02-16 18:01:38 +05:30
Dhiyaneshwaran 88a62d599f
fix 2023-02-16 17:56:34 +05:30
Dhiyaneshwaran 3a988f898c
Update and rename mapbox-token.yaml to mapbox-token-disclosure.yaml 2023-02-16 17:56:07 +05:30
pussycat0x 4a0d7bc891
minor -update 2023-02-16 16:42:52 +05:30
pussycat0x 3ae1ea3a9d
severity -update 2023-02-16 16:26:39 +05:30
pussycat0x 548cdb767d
reference, name -update 2023-02-16 16:23:15 +05:30
pussycat0x 413f06deb3
reference, name and extractors - update 2023-02-16 16:05:02 +05:30
Dhiyaneshwaran 05af536803
Merge pull request #6749 from theabhinavgaur/patch-12
Create dozzle-container-logs.yaml
2023-02-16 15:32:04 +05:30
pussycat0x fc6cfd2e58
regex & tags -update 2023-02-16 15:10:54 +05:30
GitHub Action bce8259fea Auto Generated CVE annotations [Thu Feb 16 08:30:30 UTC 2023] 🤖 2023-02-16 08:30:30 +00:00
Ritik Chaddha 0fbc5c444a
updated matcher, added desc. & ref. 2023-02-16 13:55:00 +05:30
Ritik Chaddha 818ab3692a
Merge pull request #6739 from MostInterestingBotInTheWorld/dashboard
Dashboard Content Enhancements
2023-02-16 13:44:03 +05:30
Ritik Chaddha 42b8e344e7
updated severity 2023-02-16 13:37:56 +05:30
Ritik Chaddha 726788d867
updated severity 2023-02-16 13:37:11 +05:30
Dhiyaneshwaran a7cedb988f
reverting back to low 2023-02-16 11:45:57 +05:30
Dhiyaneshwaran 56aa963590
reverting back to low 2023-02-16 11:45:21 +05:30
Dhiyaneshwaran b734899a76
reverting back to low 2023-02-16 11:44:06 +05:30
Dhiyaneshwaran a8c311f37d
reverting back to low 2023-02-16 11:43:17 +05:30
Dhiyaneshwaran cd049d8e4e
reverting back to low severity 2023-02-16 11:42:20 +05:30
Abhinav Gaur 83093c60a9
Create dozzle-container-logs.yaml 2023-02-16 00:12:22 +05:30
Dhiyaneshwaran 483dbb98ab
Merge pull request #6736 from mr-rizwan-syed/patch-5
Create ssl-private-key.yaml
2023-02-15 23:30:03 +05:30
Prince Chaddha 98d6e2ac8a
Delete fcm-api-token.yaml 2023-02-16 01:45:40 +08:00
Dhiyaneshwaran 1476db6ba7
Delete ssl-private-key.yaml 2023-02-15 16:29:51 +05:30
Dhiyaneshwaran 66f588f3f6
fixed 2023-02-15 16:29:39 +05:30
Dhiyaneshwaran 8da946e502
author name added 2023-02-15 16:28:33 +05:30
Dhiyaneshwaran a0874f6812
adding additional endpoints to old template 2023-02-15 16:27:11 +05:30
Dhiyaneshwaran d43fad00b1
fix-template 2023-02-15 16:11:29 +05:30
Rizwan Syed 07b627171c
Update ssl-private-key.yaml 2023-02-15 15:33:50 +05:30
Prince Chaddha 8caa753c91
updated the file name 2023-02-15 02:50:22 +08:00
Dhiyaneshwaran 8116922c03
fix-lint 2023-02-15 00:15:32 +05:30
pussycat0x 152e7da152
matchers -update 2023-02-14 22:38:40 +05:30
MostInterestingBotInTheWorld b5b46e2a74
Merge branch 'projectdiscovery:main' into dashboard 2023-02-13 14:05:55 -05:00
Devang Solanki a7a1c861af Added secret detectors for FCM API keys, mapbox API keys, razorpay client id, zapier webhooks 2023-02-13 22:16:43 +05:30
MostInterestingBotInTheWorld 312b6819e9 Enhancement: exposures/configs/golangci-config.yaml by cs 2023-02-13 11:45:35 -05:00
MostInterestingBotInTheWorld 0c0400681c Enhancement: exposures/configs/firebase-config-exposure.yaml by cs 2023-02-13 11:45:03 -05:00
MostInterestingBotInTheWorld ba7b266e12 Enhancement: exposures/configs/exposed-vscode.yaml by cs 2023-02-13 11:43:31 -05:00
MostInterestingBotInTheWorld 8eaab1c5be Enhancement: exposures/configs/exposed-sharepoint-list.yaml by cs 2023-02-13 11:41:55 -05:00
MostInterestingBotInTheWorld 8d14f7836a Enhancement: exposures/configs/exposed-hg.yaml by cs 2023-02-13 11:40:56 -05:00
MostInterestingBotInTheWorld 0e4e5128c9 Enhancement: exposures/configs/exposed-darcs.yaml by cs 2023-02-13 11:39:49 -05:00
MostInterestingBotInTheWorld b2dacc3670 Enhancement: exposures/configs/exposed-bzr.yaml by cs 2023-02-13 11:38:58 -05:00
MostInterestingBotInTheWorld 9527003f6c Enhancement: exposures/configs/exposed-authentication-asmx.yaml by cs 2023-02-13 11:38:03 -05:00
MostInterestingBotInTheWorld fad509fb64 Enhancement: exposures/configs/editor-exposure.yaml by cs 2023-02-13 11:37:05 -05:00
sduc b355925956
error 2023-02-13 16:38:59 +01:00
MostInterestingBotInTheWorld a1b2b5f3ef Enhancement: exposures/configs/debug-vars.yaml by cs 2023-02-13 10:27:33 -05:00
MostInterestingBotInTheWorld b63baef96f Enhancement: exposures/configs/codeception-config.yaml by cs 2023-02-13 10:25:36 -05:00
MostInterestingBotInTheWorld e627cef0d5 Enhancement: exposures/configs/cisco-network-config.yaml by cs 2023-02-13 10:24:17 -05:00
MostInterestingBotInTheWorld d36d591c09 Enhancement: exposures/configs/circleci-ssh-config.yaml by cs 2023-02-13 10:22:45 -05:00
MostInterestingBotInTheWorld a494633b4f Enhancement: exposures/configs/circleci-config.yaml by cs 2023-02-13 10:20:41 -05:00
MostInterestingBotInTheWorld ebc519f9e8 Enhancement: exposures/configs/behat-config.yaml by cs 2023-02-13 10:19:55 -05:00
MostInterestingBotInTheWorld 26fd7eaa85 Enhancement: exposures/configs/apache-config.yaml by cs 2023-02-13 10:18:10 -05:00
MostInterestingBotInTheWorld 24f765c7be Enhancement: exposures/configs/apache-config.yaml by cs 2023-02-13 10:17:03 -05:00
sullo 62c78652e8 Add phpinfo() for WAMP server 2023-02-13 10:14:10 -05:00
MostInterestingBotInTheWorld 61ec39b7e7 Enhancement: exposures/configs/accueil-wampserver.yaml by cs 2023-02-13 10:10:50 -05:00
MostInterestingBotInTheWorld 9697804209 Enhancement: exposures/configs/accueil-wampserver.yaml by cs 2023-02-13 10:09:38 -05:00
sullo 5c0519ee61 Spacing and minor name tweaks 2023-02-13 09:41:20 -05:00
pussycat0x 6f5381e0e7
indentation -fix 2023-02-13 18:44:56 +05:30
Rizwan Syed 4926c2951a
Update svn-wc-db.yaml 2023-02-13 16:23:06 +05:30
Rizwan Syed 239f8d6b6d
Update svn-wc-db.yaml
Most of the time wc.db file is big in size, response from the web server may take time, could lead to content deadline exceeded error, even if the wc.db file exist.
So I change the HTTP Method to HEAD
Also, I change the rating to High because it could lead to source code disclosure.
I cross verified with one of my target, current template does not work, so here is the revised one.
Reference: https://infosecwriteups.com/indias-aadhar-card-source-code-disclosure-via-exposed-svn-wc-db-c05519ea7761
2023-02-13 16:17:37 +05:30
sduc d5f2d1b9e2
credentials-disclosure: regex accessToken
regex matching accessToken matches on `"accessToken":null` which is a false positive.
This PR attempts to resolve this by explicitly asking the regex to not match null.
2023-02-13 10:35:31 +01:00
Rizwan Syed 004f0b8df3
Create ssl-private-key.yaml
This template checks for eposed SSL Private keys
2023-02-13 12:45:39 +05:30
Devang Solanki 67a6742f7d Error Correction 2023-02-12 21:00:22 +05:30
Devang Solanki 7634ef7153 Added Razorpay-client-id, Zapier webhook, mapbox, fcm api keys 2023-02-12 18:42:05 +05:30
Ritik Chaddha a3c60792cf
updated name 2023-02-11 10:30:13 +05:30
Ritik Chaddha 4b0f78cdf5
updated name 2023-02-11 10:29:55 +05:30
Thibault Soubiran 8d26b3fea5 Improve Keycloak templates 2023-02-10 22:01:43 +01:00
MostInterestingBotInTheWorld fe3a2d5e3d Enhancement: exposures/configs/debug-vars.yaml by md 2023-02-09 16:39:16 -05:00
MostInterestingBotInTheWorld 67e11377e7 Enhancement: exposures/configs/docker-compose-config.yaml by md 2023-02-09 16:38:53 -05:00
MostInterestingBotInTheWorld 8c070b4d6a Enhancement: exposures/configs/firebase-config-exposure.yaml by md 2023-02-09 16:33:42 -05:00
MostInterestingBotInTheWorld 2685e350e4 Enhancement: exposures/configs/kubernetes-kustomization-disclosure.yaml by md 2023-02-09 16:30:02 -05:00
MostInterestingBotInTheWorld 7232a65cef Enhancement: exposures/configs/karma-config-js.yaml by md 2023-02-09 16:25:02 -05:00
MostInterestingBotInTheWorld 4fa67e2b36 Enhancement: exposures/configs/joomla-config-file.yaml by md 2023-02-09 16:22:10 -05:00
MostInterestingBotInTheWorld 87ce20e3f9 Enhancement: exposures/configs/javascript-env.yaml by md 2023-02-09 16:20:21 -05:00
MostInterestingBotInTheWorld bc702249f2 Enhancement: exposures/configs/hp-ilo-serial-key-disclosure.yaml by md 2023-02-09 16:19:26 -05:00
MostInterestingBotInTheWorld d2ca8d26c5 Enhancement: exposures/configs/honeywell-scada-config.yaml by md 2023-02-09 16:17:34 -05:00
MostInterestingBotInTheWorld bea6ec0f15 Enhancement: exposures/configs/hikvision-info-leak.yaml by md 2023-02-09 16:12:01 -05:00
MostInterestingBotInTheWorld fb43816749 Enhancement: exposures/configs/golangci-config.yaml by md 2023-02-09 16:07:20 -05:00
MostInterestingBotInTheWorld 88e2481a3d Enhancement: exposures/configs/ftp-credentials-exposure.yaml by md 2023-02-09 16:04:25 -05:00
MostInterestingBotInTheWorld 66eed50b9e Enhancement: exposures/configs/git-credentials-disclosure.yaml by md 2023-02-09 16:03:58 -05:00
MostInterestingBotInTheWorld 039760d7fe Enhancement: exposures/configs/git-credentials-disclosure.yaml by md 2023-02-09 16:01:33 -05:00
MostInterestingBotInTheWorld c0e2295750 Enhancement: exposures/configs/git-config.yaml by md 2023-02-09 16:01:21 -05:00
MostInterestingBotInTheWorld 21e8614248 Enhancement: exposures/configs/ftp-credentials-exposure.yaml by md 2023-02-09 15:58:22 -05:00
MostInterestingBotInTheWorld 997482718f Enhancement: exposures/configs/exposed-vscode.yaml by md 2023-02-09 15:56:03 -05:00
MostInterestingBotInTheWorld 6f89de04fa Enhancement: exposures/configs/firebase-config-exposure.yaml by md 2023-02-09 15:54:05 -05:00
MostInterestingBotInTheWorld ed34fd6c52 Enhancement: exposures/configs/exposed-vscode.yaml by md 2023-02-09 15:45:20 -05:00
MostInterestingBotInTheWorld 224f487bc1 Enhancement: exposures/configs/exposed-svn.yaml by md 2023-02-09 15:40:44 -05:00
MostInterestingBotInTheWorld f501e830c9 Enhancement: exposures/configs/exposed-sharepoint-list.yaml by md 2023-02-09 15:38:37 -05:00
MostInterestingBotInTheWorld afe1826c07 Enhancement: exposures/configs/exposed-hg.yaml by md 2023-02-09 15:14:54 -05:00
MostInterestingBotInTheWorld c75b88a594 Enhancement: exposures/configs/exposed-darcs.yaml by md 2023-02-09 15:04:17 -05:00
MostInterestingBotInTheWorld 9e8b5a060d Enhancement: exposures/configs/exposed-bzr.yaml by md 2023-02-09 15:02:38 -05:00
MostInterestingBotInTheWorld 3811e39210 Enhancement: exposures/configs/exposed-bitkeeper.yaml by md 2023-02-09 15:00:08 -05:00
MostInterestingBotInTheWorld 6791e7d854 Enhancement: exposures/configs/dockerfile-hidden-disclosure.yaml by md 2023-02-09 14:52:16 -05:00
MostInterestingBotInTheWorld a25fc6d5b1 Enhancement: exposures/configs/exposed-authentication-asmx.yaml by md 2023-02-09 14:48:07 -05:00
MostInterestingBotInTheWorld 16dd3d1ec5 Enhancement: exposures/configs/editor-exposure.yaml by md 2023-02-09 14:40:10 -05:00
MostInterestingBotInTheWorld a662376393 Enhancement: exposures/configs/docker-compose-config.yaml by md 2023-02-09 14:34:04 -05:00
MostInterestingBotInTheWorld d7c460ec79 Enhancement: exposures/configs/debug-vars.yaml by md 2023-02-09 14:29:36 -05:00
MostInterestingBotInTheWorld 85a729b8e3 Enhancement: exposures/configs/cypress-web-config.yaml by md 2023-02-09 14:22:57 -05:00
MostInterestingBotInTheWorld 9290b722dd Enhancement: exposures/configs/configuration-listing.yaml by md 2023-02-09 14:16:40 -05:00
MostInterestingBotInTheWorld eaa7228f13 Enhancement: exposures/configs/configuration-listing.yaml by md 2023-02-09 14:15:30 -05:00
Ritik Chaddha bceb82e41e
updated path 2023-02-09 10:25:47 +05:30
MostInterestingBotInTheWorld ba478ab8ca Enhancement: exposures/backups/froxlor-database-backup.yaml by md 2023-02-08 14:48:19 -05:00
MostInterestingBotInTheWorld 3ab8eccdd6 Enhancement: exposures/apis/drupal-jsonapi-user-listing.yaml by md 2023-02-08 14:47:51 -05:00
MostInterestingBotInTheWorld ae31c01450 Enhancement: exposures/configs/config-rb.yaml by md 2023-02-08 14:40:35 -05:00
MostInterestingBotInTheWorld 2edd10291a Enhancement: exposures/configs/config-json.yaml by md 2023-02-08 14:37:11 -05:00
MostInterestingBotInTheWorld 4e27cc3d18 Enhancement: exposures/configs/codeception-config.yaml by md 2023-02-08 14:35:13 -05:00
MostInterestingBotInTheWorld 23cb99b0cb Enhancement: exposures/configs/cisco-network-config.yaml by md 2023-02-08 14:33:38 -05:00
MostInterestingBotInTheWorld dc51b920fa Enhancement: exposures/configs/circleci-ssh-config.yaml by md 2023-02-08 14:28:58 -05:00
MostInterestingBotInTheWorld e263201812 Enhancement: exposures/configs/circleci-config.yaml by md 2023-02-08 14:23:16 -05:00
MostInterestingBotInTheWorld 1b8ac9f42a Enhancement: exposures/configs/cgi-printenv.yaml by md 2023-02-08 14:19:26 -05:00
MostInterestingBotInTheWorld c6dac0782b Enhancement: exposures/configs/cakephp-config.yaml by md 2023-02-08 14:16:53 -05:00
MostInterestingBotInTheWorld ca24568ee0 Enhancement: exposures/configs/cakephp-config.yaml by md 2023-02-08 14:16:26 -05:00
MostInterestingBotInTheWorld eef7e87833 Enhancement: exposures/configs/behat-config.yaml by md 2023-02-08 13:23:14 -05:00
MostInterestingBotInTheWorld de2eed9288 Enhancement: exposures/configs/appveyor-configuration-file.yaml by md 2023-02-08 13:19:47 -05:00
MostInterestingBotInTheWorld 4ac2fa84bd Enhancement: exposures/configs/appspec-yml-disclosure.yaml by md 2023-02-08 13:17:05 -05:00
MostInterestingBotInTheWorld e624c92fa5 Enhancement: exposures/configs/apache-config.yaml by md 2023-02-08 13:12:01 -05:00
MostInterestingBotInTheWorld 5e4bc9ee58 Enhancement: exposures/configs/ansible-config-disclosure.yaml by md 2023-02-08 12:47:49 -05:00
MostInterestingBotInTheWorld 0f4f2b73f9 Enhancement: exposures/configs/amazon-docker-config.yaml by md 2023-02-08 12:45:25 -05:00
MostInterestingBotInTheWorld e7efb348c6 Enhancement: exposures/configs/airflow-configuration-exposure.yaml by md 2023-02-08 12:09:30 -05:00
MostInterestingBotInTheWorld 49205c6e58 Enhancement: exposures/configs/accueil-wampserver.yaml by md 2023-02-08 12:04:58 -05:00
MostInterestingBotInTheWorld be25544e20 Enhancement: exposures/backups/zip-backup-files.yaml by md 2023-02-08 12:00:50 -05:00
MostInterestingBotInTheWorld e76b7a3385 Enhancement: exposures/backups/froxlor-database-backup.yaml by md 2023-02-08 11:59:03 -05:00
MostInterestingBotInTheWorld c03aa430f4 Enhancement: exposures/backups/php-backup-files.yaml by md 2023-02-08 11:58:40 -05:00
MostInterestingBotInTheWorld 151aea655f Enhancement: exposures/backups/settings-php-files.yaml by md 2023-02-08 11:58:08 -05:00
MostInterestingBotInTheWorld cb1cc93249 Enhancement: exposures/backups/php-backup-files.yaml by md 2023-02-08 11:56:36 -05:00
MostInterestingBotInTheWorld bca483ca6a Enhancement: exposures/backups/froxlor-database-backup.yaml by md 2023-02-08 11:54:51 -05:00
MostInterestingBotInTheWorld 91fa93df6b Enhancement: exposures/apis/drupal-jsonapi-user-listing.yaml by md 2023-02-08 11:36:47 -05:00
sandeep 0610e45ecf syntax fixes 2023-02-07 04:27:49 +05:30