Commit Graph

681 Commits (90e6799473685ccdcc98663abbf061f961234541)

Author SHA1 Message Date
GitHub Action e51eecde1f TemplateMan Update [Mon Oct 16 10:55:13 UTC 2023] 🤖 2023-10-16 10:55:15 +00:00
sandeep 161b90353a templateman update 2023-10-14 16:57:55 +05:30
GitHub Action d98eb35085 TemplateMan Update [Thu Oct 5 17:49:50 UTC 2023] 🤖 2023-10-05 17:49:51 +00:00
pussycat0x e81bf513cc
Update exim-detect.yaml 2023-10-05 17:49:14 +05:30
Ricardo Maia 820dc8ef72 Exim Detect template 2023-10-04 22:04:30 +00:00
johnk3r f953aca287
Create wsftp-detect.yaml (#8285)
* Create wsftp-detect.yaml

* Update and rename wsftp-detect.yaml to wsftp-ssh-detect.yaml

* Update and rename wsftp-ssh-detect.yaml to ws_ftp-ssh-detect.yaml

* Create ws_ftp-server-web-transfer.yaml

* misc update

* Update ws_ftp-server-web-transfer.yaml

* Update ws_ftp-ssh-detect.yaml

---------

Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-09-30 13:51:24 +05:30
GitHub Action 0b5872b72f TemplateMan Update [Fri Sep 29 09:33:18 UTC 2023] 🤖 2023-09-29 09:33:18 +00:00
sandeep 9fa9792dbf misc fix 2023-09-29 14:51:39 +05:30
Daniel Beneyto e109f59372 Added bgp-detect template 2023-09-29 10:21:46 +02:00
GitHub Action 627e654d30 TemplateMan Update [Wed Sep 27 13:29:58 UTC 2023] 🤖 2023-09-27 13:29:59 +00:00
sandeep 29133d5978 removed duplicate network request 2023-09-17 01:05:21 +05:30
Prince Chaddha 1bab419ce5 Updated network CVEs 2023-09-06 18:58:19 +05:30
pentesttoolscom 95da9ded2c
Fix unauth_psql detection on other protocols
If the protocol we send the request to reflects our message we detect it
as a FP. Excluding a 500 error code should be a more general rule.
2023-09-01 12:04:59 +03:00
Neriberto CP a8683c1bb9 Update exposed-redis.yaml
This suggests a CWE classification
2023-08-28 22:39:52 -03:00
pussycat0x 24ce17083b
Fix-FP generic-c2-jarm.yaml 2023-08-22 14:55:05 +05:30
Dhiyaneshwaran 144f255be0
fix marshall error 2023-08-18 10:04:56 +05:30
Dhiyaneshwaran 241e679e09
fix remediation 2023-08-18 08:04:00 +05:30
Dhiyaneshwaran 482da717f2
fix remediation 2023-08-18 08:02:07 +05:30
pussycat0x a262a7361a
lint -fix 2023-08-18 00:03:43 +05:30
pussycat0x c920bfef86 Network Remediation - Update 2023-08-17 23:59:31 +05:30
Dhiyaneshwaran ee0d3a9bdd
Merge pull request #7924 from projectdiscovery/havoc-c2
Havoc C2  - Detection
2023-08-16 09:50:11 +05:30
Dhiyaneshwaran 94344ac938
Merge pull request #7926 from pentesttools-com/fix-apache-rocketmq-broker-unauth
Fix apache-rocketmq-broker-unauth.yaml
2023-08-16 09:46:59 +05:30
pentesttoolscom 289c71c6eb
Fix apache-rocketmq-broker-unauth.yaml 2023-08-14 12:43:41 +03:00
pentesttoolscom a608067c3c
Fix unauth-psql.yaml false positive
Fix unauth-psql.yaml giving false positive results when the request is
reflected in the HTTP/FTP response.
2023-08-14 10:07:02 +03:00
pussycat0x 2c804759f7 Havoc C2 - Detection 2023-08-14 11:33:44 +05:30
Dhiyaneshwaran e834535479
Merge pull request #7865 from pentesttools-com/Fix-RocketMQ-Broker-Unauth
Fix Apache-rocketmq-broker-unauth.yaml
2023-08-09 01:45:13 +05:30
Dhiyaneshwaran 54570db96d
Merge pull request #7867 from pentesttools-com/Fix-psql-detection
Fix pgsql-detect.yaml
2023-08-09 01:44:25 +05:30
Dhiyaneshwaran 52623c2124
Merge pull request #7866 from pentesttools-com/Fix-ibm-d2b-database-server-detection
Fix Ibm-d2b-database-server.yaml
2023-08-09 01:44:09 +05:30
pussycat0x 2fad1e958e
Update apache-rocketmq-broker-unauth.yaml 2023-08-08 22:52:06 +05:30
pussycat0x 1d11e5559d
matcher - update 2023-08-08 22:44:31 +05:30
pussycat0x 1e2502b32b
matchers - update 2023-08-08 22:43:47 +05:30
pussycat0x 1627ddf1c4
Update samba-detect.yaml 2023-08-08 22:42:16 +05:30
pussycat0x 062c36a7fb
Update ibm-d2b-database-server.yaml 2023-08-08 22:41:04 +05:30
pentesttoolscom 4814271ae6
Fix linting 2023-08-08 10:13:14 +03:00
pentesttoolscom 9fc0c3d2e9
Fix linting 2023-08-08 10:11:23 +03:00
pentesttoolscom 8b8399d3c5
Fix template linting 2023-08-08 10:09:37 +03:00
pussycat0x 6e4ccb8bba
Indentation - fix 2023-08-07 21:48:42 +05:30
pentesttoolscom f01d238b6c
Fix samba-detect.yaml 2023-08-07 17:44:10 +03:00
pentesttoolscom 9435cca227
Fix psql-detect.yaml 2023-08-07 17:39:37 +03:00
pentesttoolscom 4861c89ef4
Fix Ibm-d2b-database-server.yaml 2023-08-07 17:34:20 +03:00
pentesttoolscom 7c7d75a55e
Fix apache-rocketmq-broker-unauth.yaml 2023-08-07 17:20:04 +03:00
Dhiyaneshwaran c58525404a
Merge pull request #7791 from malikashish8/fix-fp-rocketmq-unauth
Add negative filter for rocketmq unauth
2023-08-01 10:10:39 +05:30
Prince Chaddha 317a4bcf82 updated tags 2023-07-31 21:09:04 +05:30
sandeep f611d700e7 Added strict matchers instead of using negative matcher 2023-07-31 14:43:27 +05:30
malikashish8 cf13674ca8 add negative filter for rocketmq unauth 2023-07-31 10:46:31 +10:00
GitHub Action c35673f0c4 TemplateMan Update [Fri Jul 28 07:53:40 UTC 2023] 🤖 2023-07-28 07:53:41 +00:00
pussycat0x 8c33100f65
Add files via upload 2023-07-28 12:01:53 +05:30
ErikOwen 67a02bb507 standardize network template tags 2023-07-24 11:27:05 -07:00
GitHub Action cb53e21d50 TemplateMan Update [Tue Jul 18 08:23:15 UTC 2023] 🤖 2023-07-18 08:23:15 +00:00
Dhiyaneshwaran 44e36dec6b fix spacing 2023-07-18 13:47:02 +05:30
pussycat0x 5182daf53b
Merge branch 'main' into jarm-c2-detect 2023-07-18 13:19:58 +05:30
sandeep 3ec9dd7614 network template enrichment 2023-07-16 18:59:08 +05:30
pussycat0x 794a725837
Update apache-rocketmq-broker-unauth.yaml 2023-07-14 23:01:36 +05:30
pussycat0x 197d816040 C2 Jarm - Detect 2023-07-14 13:32:24 +05:30
pussycat0x 65d3634438 remove -jarm 2023-07-14 12:59:04 +05:30
pussycat0x ed01088d6d C2 Jarm - Detect 2023-07-14 12:48:42 +05:30
Dhiyaneshwaran 5088d51edd
error fix 2023-07-10 10:08:10 +05:30
GwanYeong Kim 0e5fcfa57e Updated EPSS Score to CVE Templates
Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>
2023-07-10 09:25:11 +09:00
Prince Chaddha fb087bbc59 Merge branch 'main' into pussycat0x-1 2023-07-07 17:08:23 +05:30
Prince Chaddha 0a681ec0bb removed empty lines 2023-07-07 16:56:27 +05:30
pussycat0x 0ccffd229a
Merge branch 'main' into remove-comments 2023-07-07 16:38:46 +05:30
GitHub Action 8fc95cf110 TemplateMan Update [Fri Jul 7 10:32:26 UTC 2023] 🤖 2023-07-07 10:32:27 +00:00
GitHub Action db7e81da7e TemplateMan Update [Fri Jul 7 10:31:10 UTC 2023] 🤖 2023-07-07 10:31:10 +00:00
Ritik Chaddha fadad887fb
Merge pull request #7408 from j4vaovo/patch-54
Create apache-rocketmq-broker-unauth.yaml
2023-07-07 16:00:35 +05:30
Ritik Chaddha 855f8ea1e7
Merge pull request #7420 from j4vaovo/patch-55
Create apache-dubbo-unauth.yaml
2023-07-07 15:59:26 +05:30
pussycat0x 95a818f0c6
Rename network/apache-dubbo-unauth.yaml to network/misconfig/apache-dubbo-unauth.yaml 2023-07-06 23:14:42 +05:30
pussycat0x b12d7501f3
minor -update 2023-07-06 23:14:03 +05:30
pussycat0x 0d4c01fc20
Rename network/apache-rocketmq-broker-unauth.yaml to network/misconfig/apache-rocketmq-broker-unauth.yaml 2023-07-06 22:23:13 +05:30
pussycat0x 8871b8acd1
protocol & metadata -update 2023-07-06 22:22:31 +05:30
Prince Chaddha 75ed275328 removed enhanced by comments 2023-07-05 13:37:58 +05:30
sandeep 187fab91ee Merge remote-tracking branch 'origin' into pussycat0x-1 2023-07-04 15:42:58 +05:30
Prince Chaddha 50d86c25a1
Merge pull request #7344 from ErikOwen/patch/tag-standardization
Patch: Tag Standardization
2023-07-04 13:10:55 +05:30
pussycat0x 72d144cd52 Network Directory - Restructuring 2023-07-03 12:28:37 +05:30
GitHub Action d9ba084506 TemplateMan Update [Sat Jul 1 13:39:57 UTC 2023] 🤖 2023-07-01 13:39:58 +00:00
Dhiyaneshwaran 3b374adffa
Merge pull request #7564 from projectdiscovery/pussycat0x-patch-6
PostgreSQL - Unauthenticated Access
2023-07-01 19:08:04 +05:30
GitHub Action e9eafd5f7d TemplateMan Update [Sat Jul 1 13:36:56 UTC 2023] 🤖 2023-07-01 13:36:57 +00:00
Dhiyaneshwaran dd68087392
Update unauth-psql.yaml 2023-07-01 19:05:09 +05:30
ErikOwen 3a4b625e3d add detect tag to templates ending with -detect.yaml 2023-06-30 15:56:17 -07:00
ErikOwen 43248088bf add network tag to network/ templates 2023-06-30 15:53:55 -07:00
ErikOwen 7c39bb37e9 Merge remote-tracking branch 'origin/patch/tag-standardization' into patch/tag-standardization 2023-06-30 15:08:03 -07:00
ErikOwen 4e979d1dc5 merge branch main into patch/tag-standardization 2023-06-30 14:56:15 -07:00
pussycat0x 371642ad1a
PostgreSQL - User Enumeration 2023-06-28 18:16:54 +05:30
Dhiyaneshwaran 66607766cc
comment space fix 2023-06-28 10:54:50 +05:30
pussycat0x 7b8f01380d
Update unauth-psql.yaml 2023-06-28 10:32:46 +05:30
pussycat0x fb81d4d0a2
Add files via upload 2023-06-28 10:14:14 +05:30
GitHub Action acfcac3e67 TemplateMan Update [Fri Jun 23 05:22:07 UTC 2023] 🤖 2023-06-23 05:22:08 +00:00
Ritik Chaddha 16dcbe64db
Merge pull request #7326 from projectdiscovery/pussycat0x-patch-6
CVE-2020-1938 minor - update
2023-06-23 10:50:08 +05:30
pussycat0x f98a8c1e56
Update CVE-2020-1938.yaml 2023-06-23 10:27:18 +05:30
GitHub Action 41277637c0 TemplateMan Update [Wed Jun 21 21:03:53 UTC 2023] 🤖 2023-06-21 21:03:54 +00:00
Dhiyaneshwaran 17f9727040
Merge pull request #7444 from j4vaovo/patch-61
Update CVE-2020-11981.yaml
2023-06-16 10:30:13 +05:30
Dhiyaneshwaran f90fab0938
Merge pull request #7443 from j4vaovo/patch-60
Update CVE-2023-33246.yaml
2023-06-16 10:29:00 +05:30
Ritik Chaddha 191365a6c8
Merge pull request #7422 from j4vaovo/patch-56
Update CVE-2022-24706.yaml
2023-06-16 10:26:34 +05:30
Dhiyaneshwaran 3f13ff9e76
Merge pull request #7392 from projectdiscovery/princechaddha-patch-2
Fixing tags
2023-06-16 09:48:34 +05:30
J4vaovo 525917af27
Update tidb-native-password.yaml 2023-06-15 03:26:00 +08:00
J4vaovo c6e9e385d1
Update CVE-2020-11981.yaml 2023-06-15 03:01:51 +08:00
J4vaovo 0c2823fb5b
Update CVE-2023-33246.yaml 2023-06-15 03:00:56 +08:00
pussycat0x 916c498ad1
Merge pull request #7440 from j4vaovo/patch-57
Update CVE-2018-2893.yaml
2023-06-14 23:31:02 +05:30
J4vaovo b6c4907e47
Update CVE-2016-3510.yaml 2023-06-15 01:50:29 +08:00
J4vaovo 62a59e1bcd
Update CVE-2018-2893.yaml 2023-06-15 01:44:49 +08:00
J4vaovo 1f3cb91d40
Update CVE-2022-24706.yaml 2023-06-14 19:40:06 +08:00
J4vaovo 3473c3fc13
Update apache-rocketmq-broker-unauth.yaml 2023-06-14 18:44:15 +08:00
J4vaovo 133c7c5854
Create apache-dubbo-unauth.yaml 2023-06-14 18:39:09 +08:00
J4vaovo 1ee72e0cf8
Update apache-rocketmq-broker-unauth.yaml 2023-06-14 01:25:54 +08:00
J4vaovo 8adf33c65e
Update apache-rocketmq-broker-unauth.yaml 2023-06-14 00:14:49 +08:00
J4vaovo 0cd15711c9
Update apache-rocketmq-broker-unauth.yaml 2023-06-14 00:13:51 +08:00
J4vaovo 445b079614
Create apache-rocketmq-broker-unauth.yaml 2023-06-14 00:10:15 +08:00
Prince Chaddha b86f5b4a3c
Fixed matchers-condition CVE-2020-11981 2023-06-13 14:22:29 +05:30
Prince Chaddha f9fd870fbb misc changes 2023-06-12 18:54:55 +05:30
Ritik Chaddha 25b6a01944
Merge pull request #7340 from projectdiscovery/pussycat0x-patch-14
CVE-2023-33246  -  RocketMQ <= 5.1.0 Remote Code Execution
2023-06-08 23:46:44 +05:30
Ritik Chaddha 13cfd3403b
Update CVE-2023-33246.yaml 2023-06-08 23:37:44 +05:30
sandeep bf7a9bea6c strict + fixed matcher 2023-06-07 17:54:20 +05:30
Dhiyaneshwaran d4c0410724
Update CVE-2022-24706.yaml 2023-06-06 12:47:45 +05:30
Dhiyaneshwaran f6a913e67d
protocol update 2023-06-06 12:43:28 +05:30
Dhiyaneshwaran 1e6a6f6937
Merge pull request #7070 from projectdiscovery/feat-CVE-2022-24706
Adding CVE-2022-24706 (couchdb RCE)
2023-06-06 12:40:24 +05:30
pussycat0x 6d24c721bf
data - update 2023-06-06 12:37:03 +05:30
Dhiyaneshwaran 6b9d2d8791
minor enhancement 2023-06-06 12:12:39 +05:30
Ritik Chaddha 1e1becbe31
lint fix 2023-06-06 09:36:47 +05:30
sandeep ffd3754f68 syntax fixes 2023-06-06 03:45:15 +05:30
ErikOwen 58c473547d add network tag to templates in network/ 2023-06-05 11:07:02 -07:00
pussycat0x 6870afdbaf
condition - update 2023-06-05 19:50:08 +05:30
Dhiyaneshwaran 98d42373cc
added metadata 2023-06-05 17:00:49 +05:30
pussycat0x 96e6a4ef23
Update CVE-2023-33246.yaml 2023-06-05 16:38:24 +05:30
sandeep e53d19f583 boolean format update 2023-06-04 13:43:42 +05:30
GitHub Action df5a969b80 Auto Generated CVE annotations [Sat Jun 3 18:56:35 UTC 2023] 🤖 2023-06-03 18:56:35 +00:00
pussycat0x b10e9e7a8a
Rename cves/2022/CVE-2022-24706.yaml to network/cves/2022/CVE-2022-24706.yaml 2023-06-02 13:14:45 +05:30
Ritik Chaddha 5606478cc2 update max-req=> max-request 2023-06-01 23:08:50 +05:30
Ritik Chaddha bc3dd3c0d4 Revert "update max-req => max-request"
This reverts commit d82143eacc.
2023-06-01 22:48:38 +05:30
Ritik Chaddha d82143eacc update max-req => max-request 2023-06-01 22:46:25 +05:30
sandeep 60331c8e46 lint update 2023-06-01 21:51:22 +05:30
sandeep a9427d2479 misc updates 2023-06-01 21:47:35 +05:30
pussycat0x 65d9266e31
CVE-2023-33246 RocketMQ versions <= 5.1.0 Remote Code Execution 2023-06-01 21:02:58 +05:30
Dhiyaneshwaran 96a1e25e14
Merge pull request #7305 from ruben-condor/add-classification-for-CVE-2020-11981.yaml
Updated CVE-2020-11981
2023-05-31 16:07:25 +05:30
pussycat0x 511a84bd24
Update CVE-2020-1938.yaml 2023-05-31 08:41:37 +05:30
pussycat0x 6b6bfb32aa
CVE-2020-1938 minor - update 2023-05-31 08:34:41 +05:30
Dhiyaneshwaran dd7721e326
Update axigen-mail-server-detect.yaml 2023-05-30 15:34:14 +05:30
Ruben Condor 4721c2fc48
Updated axigen-mail-server-detect.yaml 2023-05-30 12:09:21 +03:00
Ruben Condor a1faf3d103
Updated CVE-2020-11981 2023-05-29 14:32:09 +03:00
Ritik Chaddha c9db123f00
Merge branch 'main' into CVE-2017-5645 2023-05-24 21:44:34 +05:30
Ritik Chaddha ea95e195d3
updated info 2023-05-24 21:42:39 +05:30
pussycat0x 70f90eb489
minor -update 2023-05-24 20:09:45 +05:30
Prince Chaddha 5e478b89c7
Rename teamspeak3-detect to teamspeak3-detect.yaml 2023-05-19 12:17:23 +05:30
Ritik Chaddha d7307f30cb
Merge pull request #7251 from projectdiscovery/princechaddha-patch-5
Create CVE-2016-3510.yaml
2023-05-18 19:51:30 +05:30
Ritik Chaddha 5e6c3691c0
updated info 2023-05-18 19:48:04 +05:30
Dhiyaneshwaran 89ac9e63d6
Merge pull request #7242 from projectdiscovery/pussycat0x-patch-6
CVE-2020-11981
2023-05-18 15:10:00 +05:30
Dhiyaneshwaran d9a02b0c53
added additional matcher 2023-05-18 14:58:30 +05:30
Ritik Chaddha 12b7b57f30
lint fix 2023-05-18 12:00:39 +05:30
Prince Chaddha e93696fa8a
Create CVE-2016-3510.yaml 2023-05-18 11:30:51 +05:30
pussycat0x 5c0e6198cd
minor -update 2023-05-17 18:46:14 +05:30
Dhiyaneshwaran c3db741049
Merge pull request #7220 from ricardojba/patch-1
Update exposed-redis.yaml
2023-05-17 10:43:08 +05:30
pussycat0x c7be82ceee
Update CVE-2020-11981.yaml 2023-05-17 02:03:10 +05:30