Commit Graph

66 Commits (98ce71c09c673071c16563726d3dd1b413dac741)

Author SHA1 Message Date
Dwi Siswanto af4071d0cd ✏️ Update matchers 2020-09-13 22:26:28 +07:00
bauthard 4ea1e89c5d updates 2020-09-13 10:12:21 +05:30
Geeknik Labs a25681be0b
Create missing-csp.yaml
Checks for a CSP header
2020-09-08 14:11:58 +00:00
bauthard c04055bbdb file update 2020-09-08 12:53:49 +05:30
Dawid Czarnecki e7f2ce3e7c Create missing-hsts 2020-09-07 21:13:53 +02:00
bauthard b76e82f580 severity updates 2020-09-05 13:08:40 +05:30
Oways ccdfda258d
Create drupal-user-enum-ajax.yaml
[drupal-user-enum-ajax] [http] https://example.com/admin/views/ajax/autocomplete/user/a ["Anonymous"]
2020-09-01 15:45:29 +03:00
bauthard 9bf0b6dbaf uniform format 2020-09-01 00:04:29 +05:30
bauthard a867f996c5 moved to correct folder and updated severity 2020-08-31 13:15:28 +05:30
bauthard 3a6f907f6c Update missing-x-frame-options.yaml 2020-08-21 00:49:56 +05:30
bauthard 3dd06c6ecb template update 2020-08-21 00:47:46 +05:30
kurohost f813b74305 Clickjacking template 2020-08-20 13:32:31 +02:00
bauthard f0512b88d3 Update springboot-detect.yaml 2020-08-20 13:20:59 +05:30
bauthard 95168a4ba3 Update put-method-enabled.yaml 2020-08-19 20:03:55 +05:30
bauthard ecdd19bf5a put-method-enabled 2020-08-19 19:48:50 +05:30
Khaled Mohamed 19f0693742
Update put-method-test.yaml 2020-08-19 15:46:46 +02:00
Khaled Mohamed 690c3e39e0
Create put-method-test.yaml 2020-08-19 14:17:24 +02:00
bauthard 32a0da8020 Adding grafana default cred check template and workflow 2020-08-16 15:42:42 +05:30
Geeknik Labs 22b17d80de
Update wordpress-accessible-wpconfig.yaml
Add a few additional paths
2020-08-15 15:19:40 +00:00
SaN ThosH c6127b017d
Update wordpress-accessible-wpconfig.yaml 2020-08-12 20:21:27 +05:30
Romain 8a3ddb0cf1 fix typo 2020-08-12 10:18:59 +02:00
Romain 325754ad60 add wp-config file misconfig detection 2020-08-12 10:15:34 +02:00
bauthard eb4c065ef9 Update wamp-xdebug-detect.yaml 2020-08-03 11:39:41 +05:30
eschultze d12f639bc6
Create wamp-xdebug-detect.yaml 2020-08-03 00:44:37 -03:00
bauthard 72c8efa99f Update springboot-detect.yaml 2020-07-11 18:09:10 +05:30
nahoragg 400852776b
header matcher update
Came across a condition where this template wasn't matching because the application was sending "application/vnd.spring-boot.actuator.v2+json;charset=UTF-8" instead of "application/json" in content-type header of response.
2020-07-11 18:05:36 +05:30
bauthard 86059048ae fixing few last one 2020-07-11 12:02:02 +05:30
bauthard 9f5c7e7457 Update front-page-misconfig.yaml 2020-07-11 10:36:03 +05:30
bauthard aeb81f6eae
Update rabbitmq-default-admin.yaml 2020-07-08 23:04:45 +05:30
dw1 9ffe32a0ed 📝 Missing part 2020-07-08 23:50:39 +07:00
dw1 f851f14173 🔨 Fix from false-positive rabbitmq-default-admin results 2020-07-08 23:46:40 +07:00
Ice3man543 ed4e9e7feb Fixed default condition OR to AND in false-positives 2020-07-08 17:08:57 +05:30
Aditya Gujar 5516d741a4
Update rabbitmq-default-admin.yaml 2020-07-06 18:42:01 -04:00
Aditya Gujar 941ab6d875 add rabbitmq default password detection 2020-07-06 18:33:19 -04:00
bauthard bd7a526f32
Merge pull request #208 from Techbrunch/patch-5
Create jira-unauthenticated-projects.yaml
2020-07-06 22:31:11 +05:30
bauthard e2373db418 Update jira-unauthenticated-projects.yaml 2020-07-06 22:30:26 +05:30
bauthard 01ddd1deae
Merge pull request #207 from Techbrunch/patch-4
Create jira-unauthenticated-dashboards.yaml
2020-07-06 22:26:16 +05:30
Techbrunch 1b0683e4a3
Create jira-unauthenticated-projects.yaml
If public sharing is ON it allows users to share projects with all users including those that are not logged in. Those projects could reveal potentially sensitive information.
2020-07-06 18:03:33 +02:00
Techbrunch 981979d905
Create jira-unauthenticated-dashboards.yaml
If public sharing is ON it allows users to share dashboards and filters with all users including those that are not logged in. Those dashboard and filters could reveal potentially sensitive information.
2020-07-06 18:02:11 +02:00
Techbrunch a525139cbe
Update jira-unauthenticated-popular-filters.yaml 2020-07-06 17:58:12 +02:00
Techbrunch 40238f677f
Create jira-unauthenticated-popular-filters.yaml
If public sharing is ON it allows users to share dashboards and filters with all users including those that are not logged in. Those dashboard and filters could reveal potentially sensitive information.
2020-07-06 17:56:34 +02:00
Techbrunch d2eb42f149
Update jira-unauthenticated-user-picker.yaml
Fix spaces
2020-07-06 12:28:08 +02:00
Techbrunch 0fc1212d8f
Create jira-unauthenticated-user-picker.yaml
Through the user picker functionality within Jira your user base information could be available to anonymous users. The Browse User Global Permission allows a user to view a list of all Jira user names and group names, share issues, and @mention people on issues. This is used for selecting users/groups in popup screens and also enables auto-completion of usernames in most 'User Picker' menus and popups.

If you grant this permission to the Anyone group, you will be allowing anonymous users access to the endpoints that provide a list of users.

Remediation: Ensure that this permission is restricted to specific groups that require it. You can restrict it in Administration > System > Global Permissions.
2020-07-06 12:23:09 +02:00
dw1 257dca57fe 🔨 Update Springboot Actuators detection 2020-07-06 11:26:40 +07:00
dw1 c167a31784 🔧 Add path requests & matchers for Springboot Actuators 2020-07-02 23:14:39 +07:00
bauthard 91cd0e1ec4 updating template details 2020-06-27 12:25:14 +00:00
Udit Bhadauria d58974c479
Detect wordpress xmlrpc (sometimes get ssrf)
Provides a way to detect the wordpress xmlrpc endpoint that can help and leads to possible ssrf sometimes.
I am not sure if it is worth to add. But I have got a few good findings using this.

Let me know if I'm doing it right, You guys are doing great work, Love this project. Kudos..! 
Trying to contribute a little.
2020-06-27 17:14:59 +05:30
Víctor Zamanillo 18592de7f9 Typo in gem name 2020-06-01 20:47:29 +02:00
Víctor Zamanillo 5a8dc91f52 rack-mini-profiler environment information discloure detection template
Ruby Rack based web applications using rack-mini-profiler without access control can show application’s environment details
2020-05-31 17:39:48 +02:00
Ice3man543 1758728197 Linting refactor to make yamllint happy 2020-05-25 17:22:12 +05:30