daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
18,329 Commits
17 Branches
0 Tags
165 MiB
Commit Graph

355 Commits (9b21d1bd93d59048d4aa9c001707323eae9a2bcd)

Author SHA1 Message Date
forgedhallpass 110f9c9ddd Merge remote-tracking branch 'origin' into dynamic_attributes 2021-08-24 20:38:11 +03:00
sandeep ae0aabd905 misc update 2021-08-24 02:50:14 +05:30
forgedhallpass a124e393b4 Merge remote-tracking branch 'origin' into dynamic_attributes 2021-08-23 19:15:14 +03:00
Prince Chaddha 647d27925a
Merge pull request #2426 from projectdiscovery/generic 
Templates by geeknik
 2021-08-23 19:55:32 +05:30
Sandeep Singh 1def46a72e
Update firebase-config-exposure.yaml 2021-08-23 15:11:10 +05:30
Sandeep Singh 93894d5b8c
Update dbeaver-credentials.yaml 2021-08-23 15:09:33 +05:30
sandeep e160acb481 misc updates 2021-08-20 16:37:22 +05:30
forgedhallpass 77103bc629 Satisfying the linter (all errors and warnings) 
* whitespace modifications only
 2021-08-19 17:44:46 +03:00
forgedhallpass 002e8db616 Moved the "vendor" custom attribute under reference 
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
 2021-08-19 17:00:46 +03:00
forgedhallpass f55d6b75e1 Removed pipe (|) character from references, because the structure requires it to be a string slice, not a string 
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
 2021-08-19 16:59:12 +03:00
forgedhallpass 7b29be739e Merge branch 'master' into dynamic_attributes 2021-08-19 16:23:26 +03:00
forgedhallpass 0b432b341b Added comments with URLs under the "references" field 
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
 2021-08-19 16:15:35 +03:00
forgedhallpass e68d15ab63 Fixed mistakes/typos in the templates. 
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
 2021-08-19 15:30:14 +03:00
Prince Chaddha f65a78bb5c
Create firebase-config-exposure.yaml 2021-08-19 16:56:13 +05:30
Prince Chaddha d7e7c39982
Update dbeaver-credentials.yaml 2021-08-19 16:34:32 +05:30
Prince Chaddha c980eea40b
Create dbeaver-credentials.yaml 2021-08-19 16:32:09 +05:30
Prince Chaddha 4d9bd2d13b
Update zend-config-file.yaml 2021-08-19 14:27:45 +05:30
forgedhallpass cdf9451158 Removed pipe (|) character from references, because the structure requires it to be a string slice, not a string 
Related nuclei tickets:
* #259 - dynamic key-value field support for template information
* #940 - new infos in template
* #834
* RES-84
 2021-08-18 14:44:27 +03:00
sandeep 9850ced093 strict matchers 2021-08-17 22:11:28 +05:30
Muhammad Daffa 999a8febb9
Update laravel-env.yaml 2021-08-10 09:54:37 +07:00
Sandeep Singh a6e3a6a458
Merge branch 'master' into master 2021-08-09 16:09:41 +05:30
adriyansyah-mf 8ab6fc07bc
Update laravel-env.yaml 
added new path
 2021-08-09 13:43:29 +07:00
sandeep b86e8eabf9 Update codeigniter-env.yaml 2021-08-08 01:22:58 +05:30
sandeep a5500cca02 Additional optional matcher 2021-08-08 01:19:15 +05:30
sandeep 5767a0d5a2 Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates into pr/1241 2021-08-08 01:13:41 +05:30
sandeep b111aeadc3 Update laravel-env.yaml 2021-08-08 01:11:14 +05:30
PikPikcU 31a77d4e02
Update symfony-profiler.yaml 2021-08-07 09:19:05 +07:00
PikPikcU f01678b9c6
Update symfony-database-config.yaml 2021-08-07 09:18:02 +07:00
sandeep 685183858e minor update 2021-08-06 23:35:35 +05:30
sandeep 30c5d2c3b8 Update ruijie-eg-password-leak.yaml 2021-08-06 23:07:27 +05:30
sandeep 6a3a7ae691 password extractor 2021-08-06 23:04:32 +05:30
sandeep fc1af10daa Added ruijie-eg-password-leak 2021-08-06 22:42:41 +05:30
PikPikcU 5952685f5c
Create ruijie-nbr1300g-cli-password-leak.yaml 2021-08-06 17:46:57 +07:00
sandeep 24efdfd678 Update qdpm-info-leak.yaml 2021-08-05 16:17:30 +05:30
Prince Chaddha 8e0a730e3d
Rename vulnerabilities/other/qdpm-info-leak.yaml to exposures/configs/qdpm-info-leak.yaml 2021-08-05 16:10:17 +05:30
nxnjz a7f75416f0
Update and rename appsec-yml-disclosure.yaml to appspec-yml-disclosure.yaml 2021-07-30 13:16:30 +03:00
Nicolas Mattiocco 8da48bbea8
Update git-config.yaml 
improvement suggestion to keep it simple and flexible
 2021-07-29 15:17:15 +02:00
sandeep e9210d80bf strict negative matchers 2021-07-26 15:14:33 +05:30
sandeep b990243906 uniform tags 2021-07-26 14:25:43 +05:30
sandeep c9f5f01bb9 minor update 2021-07-26 00:39:16 +05:30
Geeknik Labs 41c41abdb7
Update exposed-gitignore.yaml 
Fixes the issue here: https://github.com/projectdiscovery/nuclei-templates/issues/1898#issuecomment-886237512
 2021-07-25 18:29:28 +00:00
Sandeep Singh 4b444af3c4
Merge pull request #2125 from DhiyaneshGeek/master 
17 New Templates Added
 2021-07-24 03:26:09 +05:30
sandeep 1ea3b8a8bf matcher updates 2021-07-24 03:03:31 +05:30
sandeep 9788ebbf27 more matcher updates 2021-07-24 02:54:09 +05:30
sandeep 19533bcc08 removed content type check to avoid valid matches 2021-07-24 02:53:11 +05:30
Geeknik Labs 4795c084e1
Update nginx-config.yaml 
fixes a false positive
 2021-07-23 15:18:51 -05:00
sandeep 96c78d8695 additional negative matcher 2021-07-24 00:39:30 +05:30
sandeep 1f4f8ce332 matcher update 2021-07-24 00:30:53 +05:30
sandeep 840d3ee4e3 Update github-workflows-disclosure.yaml 
removing content type check as this might miss valid results with no content type in response
 2021-07-24 00:26:56 +05:30
Sandeep Singh b0b737e0eb
Update exposures/configs/hp-ilo-serial-key-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-24 00:24:26 +05:30
Sandeep Singh 2dbeb70480
Update exposures/configs/github-workflows-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-24 00:24:11 +05:30
Sandeep Singh fccc31717a
Update exposures/configs/github-workflows-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-24 00:16:13 +05:30
sandeep 763591bc97 lint fixes 2021-07-24 00:12:28 +05:30
Dhiyaneshwaran 1d9979fead
Update exposures/configs/hp-ilo-serial-key-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 17:54:36 +05:30
Dhiyaneshwaran 3528cd7bef
Update exposures/configs/github-workflows-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 17:54:27 +05:30
Dhiyaneshwaran 62c2693d34
Update exposures/configs/appsec-yml-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 17:54:17 +05:30
Dhiyaneshwaran 834d6b8f2a
Update dockerfile-hidden-disclosure.yaml 2021-07-23 17:49:32 +05:30
Dhiyaneshwaran 80b1205379
Update exposures/configs/kubernetes-kustomization-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:45:58 +05:30
Dhiyaneshwaran a96c9c74c6
Update exposures/configs/kubernetes-kustomization-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:45:52 +05:30
Dhiyaneshwaran 4051f03440
Update exposures/configs/kubernetes-kustomization-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:45:44 +05:30
Dhiyaneshwaran 1646db1156
Update exposures/configs/hp-ilo-serial-key-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:45:37 +05:30
Dhiyaneshwaran dd025100e7
Update exposures/configs/github-workflows-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:45:30 +05:30
Dhiyaneshwaran ea45cdd369
Update exposures/configs/git-credentials-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:44:54 +05:30
Dhiyaneshwaran 9271fa9492
Update exposures/configs/dockerfile-hidden-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:44:47 +05:30
Dhiyaneshwaran 39f23522e4
Update exposures/configs/dockerfile-hidden-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:44:38 +05:30
Dhiyaneshwaran 838002d77a
Update exposures/configs/appsec-yml-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:44:23 +05:30
sandeep 7d72783090 WIP improvements 2021-07-22 16:32:37 +05:30
Dhiyaneshwaran 419456f277
Update kubernetes-kustomization-disclosure.yaml 2021-07-21 13:39:36 +05:30
Dhiyaneshwaran 6e76e533c8
Create kubernetes-kustomization-disclosure.yaml 2021-07-21 13:36:59 +05:30
Dhiyaneshwaran bf4d51136a
Create hp-ilo-serial-key-disclosure.yaml 2021-07-21 13:29:52 +05:30
Dhiyaneshwaran 15a19dea3d
Create github-workflows-disclosure.yaml 2021-07-21 13:21:05 +05:30
Dhiyaneshwaran 3425a83d38
Create git-credentials-disclosure.yaml 2021-07-21 11:19:35 +05:30
Dhiyaneshwaran 01bd0b38f4
Create dockerfile-hidden-disclosure.yaml 2021-07-21 11:13:50 +05:30
Dhiyaneshwaran 4f5a9f7d94
Create appsec-yml-disclosure.yaml 2021-07-21 11:09:04 +05:30
Philippe Delteil aec3d87e72
Update exposed-gitignore.yaml 
New conditions to avoid false positives.
 2021-07-17 23:15:08 -04:00
sandeep e232ba52d4 Added additional path 2021-07-14 18:24:26 +05:30
sandeep 950cc356ee path update 2021-07-14 17:39:50 +05:30
sandeep 367bfd4441 Added keycloak-openid-config 2021-07-14 17:38:01 +05:30
sandeep 7f1b075cf0 Temporally removing as matcher needs to be improved. 2021-07-11 13:37:39 +05:30
Sandeep Singh 72781f8dfa
Merge branch 'master' into master 2021-07-10 15:07:33 +05:30
sandeep a35c34127c Added content length condition 2021-07-10 00:40:09 +05:30
Sandeep Singh 684761587d
Merge pull request #1913 from projectdiscovery/exposed-gitignore 
Added exposed-gitignore
 2021-07-09 22:52:44 +05:30
sandeep 899f1e732b Added exposed-gitignore 2021-07-09 22:50:20 +05:30
Geeknik Labs a77a3db701
Update symfony-database-config.yaml 
Fixes #1910
 2021-07-09 06:23:28 +00:00
sandeep cd8e485541 Added Git Logs 2021-07-07 20:51:33 +05:30
Sandeep Singh 1b65d294d3
Merge pull request #1878 from jeenikaa/master 
templates added
 2021-07-07 18:57:46 +05:30
sandeep 9d78a1656b few updates 2021-07-07 18:52:35 +05:30
sandeep f97ae5ceba minor update to check full header 2021-06-30 19:29:26 +05:30
pdparchitect 199ee498f8
Update javascript-env.yaml 
Added additional matchers to broaden detection
 2021-06-30 13:55:21 +01:00
sandeep 6d12b9bb6b Added additional matcher 2021-06-30 17:53:27 +05:30
sandeep 9bd750e28e Update javascript-env.yaml 2021-06-30 16:07:25 +05:30
Petko D. Petkov e04b943dce Detect javascript environment configs. 2021-06-30 10:17:58 +00:00
sandeep 96fc7bb341 more strict matchers 2021-06-30 03:26:01 +05:30
sandeep 102d0b21b4 Removing duplicate template 2021-06-28 20:07:22 +05:30
sandeep fd63d24d53 Additional matcher 2021-06-11 16:20:34 +05:30
sandeep c539205559 Added phalcon-framework-source 2021-06-11 16:16:05 +05:30
Prince Chaddha 83ce809e8d Updated author names 2021-06-09 17:50:56 +05:30
Geeknik Labs 3a307fdcdd
Update server-private-keys.yaml 2021-06-08 00:06:01 +00:00
Geeknik Labs 578f83f39a
Update server-private-keys.yaml 
Adding support for JWT private key detection.
 2021-06-08 00:04:02 +00:00
sandeep 1b879d1dc7 Added missing condition 2021-06-06 17:44:27 +05:30
sandeep 9b3c3ec7a0 tags + additional string match 2021-06-06 14:14:01 +05:30
Geeknik Labs f01abd3e6d
Update rails-database-config.yaml 
False positive reduction. 12 matches out of 2 million hosts and they all showed a content-type of `application/octet-stream`.
 2021-06-05 12:50:49 +00:00
sandeep e4c1927a2f Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates 2021-06-04 20:00:36 +05:30
sandeep e2555d69d1 minor improvements 2021-06-04 19:59:41 +05:30
sandeep b6396aa310 Added zend-config-file 2021-06-04 18:50:38 +05:30
Sandeep Singh dac1649248
Merge pull request #1616 from projectdiscovery/CVE-2020-11978 
Added CVE-2020-11978 & Airflow Workflow
 2021-06-04 02:39:57 +05:30
sandeep 0f0ff2ee1e moving files around 2021-06-03 21:54:08 +05:30
sandeep 9147d61ce7 Added missing tags 2021-06-03 19:48:37 +05:30
Prince Chaddha cdf6cdf638
Update detect-drone-config.yaml 2021-06-02 00:38:33 +05:30
Prince Chaddha 259eb048cc
Update detect-drone-config.yaml 2021-06-02 00:33:22 +05:30
Geeknik Labs 5d083f1124
Create detect-drone-config.yaml 2021-06-01 09:07:39 -05:00
sandeep 9cd21c72b8 Added exposed-vscode 2021-05-31 12:28:19 +05:30
sandeep 670b488bfe more strict matcher 2021-05-31 11:17:26 +05:30
PikPikcU 36c45cfbc9
Create hikvision-info-leak.yaml 2021-05-31 02:21:40 +00:00
Sandeep Singh ef7aa52fcd
Merge pull request #1537 from geeknik/patch-98 
Create esmtprc.yaml
 2021-05-28 09:12:01 +05:30
sandeep f2b7f88db9 misc changes 2021-05-28 09:09:55 +05:30
Sandeep Singh 4e25fd7a33
Merge pull request #1539 from geeknik/patch-99 
Create robomongo.yaml
 2021-05-28 09:04:06 +05:30
sandeep 6d6c95c6cc misc changes 2021-05-28 09:01:24 +05:30
Geeknik Labs f287b87c86
Create robomongo.yaml 2021-05-26 16:36:36 -05:00
Geeknik Labs fe385ded1e
Create esmtprc.yaml 2021-05-26 16:28:18 -05:00
Prince Chaddha c65d023f96
Update amazon-docker-config-disclosure.yaml 2021-05-27 02:45:11 +05:30
Prince Chaddha 207e86c419
Update docker-compose-config.yaml 2021-05-27 02:44:15 +05:30
Sandeep Singh a320fd7720
Merge pull request #1494 from Techbrunch/magento-stuff 
Security Checks for Magento - Templates and workflow
 2021-05-20 20:04:25 +05:30
Geeknik Labs 1abbe0df30
Update netrc.yaml 2021-05-19 12:43:28 +00:00
sandeep 9aa71e4954 misc changes 2021-05-19 06:45:50 +05:30
Dhiyaneshwaran 034d85e296
Create nagios-status-page.yaml 2021-05-19 00:51:15 +05:30
Techbrunch 776776621a Added a few Magento related templates 2021-05-18 15:53:10 +02:00
sandeep 8894a058b9 Updating paths 2021-05-15 15:13:19 +05:30
Noam Rathaus 3644f09534 Refrence also includes explaination and a solution 2021-05-10 09:47:28 +03:00
sandeep 01f3541aae Update ruijie-phpinfo.yaml 2021-05-10 01:45:12 +05:30
sandeep 3856e88307 misc updates 2021-05-10 01:43:37 +05:30
PikPikcU 84d919eb3d
Create ruijjie-phpinfo.yaml 2021-05-09 11:30:13 +00:00
sandeep ada897f4ef Improved matcher 2021-05-08 02:17:09 +05:30
sandeep 7033cf16b9 Adding plesk-stat 2021-05-07 17:00:19 +05:30
Sandeep Singh 859af7e503
Merge pull request #1404 from DhiyaneshGeek/master 
CVE-2019-8446,CVE-2018-10141,Oracle EBS Credentials Disclosure,Oracle EBS SQL Log Disclosure
 2021-05-03 15:39:04 +05:30
sandeep c9e62eeed5 minor updates 2021-05-03 12:52:21 +05:30
Geeknik Labs 52ea8d265b
Update server-private-keys.yaml 2021-05-03 01:57:02 +00:00
Dhiyaneshwaran 339992a6e2
Create oracle-ebs-credentials-disclosure.yaml 2021-05-03 00:31:38 +05:30
sandeep 817ba2ae91 trailing spaces 2021-04-26 14:06:32 +05:30
sandeep beedd4eaf3 Update nginx-config.yaml 2021-04-26 14:02:47 +05:30
sandeep 50b0fabbf0 Added samba-config 2021-04-26 14:00:03 +05:30
sandeep b055f40fd4 Added svnserve-config 2021-04-26 13:59:45 +05:30
sandeep f46a8918cd Added httpd-config 2021-04-26 13:49:39 +05:30
sandeep ffbb94bbd2 Added php-fpm-config 2021-04-26 13:30:22 +05:30
sandeep 572a1a5549 Added apache-config 2021-04-26 13:20:34 +05:30
sandeep cce1a0880b Added nginx-config 2021-04-26 13:11:52 +05:30
sandeep 3f0806abbd Added proftpd-config 2021-04-26 13:07:38 +05:30
sandeep c838e67753 Added exposed-sharepoint-list 2021-04-26 12:49:20 +05:30
Dhiyaneshwaran 8886c88b2b
Create cisco-network-config.yaml 2021-04-22 02:29:31 +05:30
Sandeep Singh eaad43c58b
Merge pull request #1305 from pikpikcu/patch-151 
Add kyan-network-monitor-disclosure
 2021-04-20 14:58:31 +05:30