daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
9,926 Commits
17 Branches
0 Tags
165 MiB
Commit Graph

521 Commits (dbb28d586aec8f728d04354795262562042e35a0)

Author SHA1 Message Date
Geeknik Labs c9daa11bd8
Update general-tokens.yaml 2021-08-12 09:54:57 -05:00
Geeknik Labs 166049bf0b
Update general-tokens.yaml 
more FP work
 2021-08-12 09:53:33 -05:00
Sandeep Singh 68dad33565
Merge pull request #2365 from daffainfo/patch-144 
Update laravel-env.yaml
 2021-08-12 18:48:11 +05:30
Geeknik Labs 39e0fd7c54
Update general-tokens.yaml 
Nuking more false positives
 2021-08-12 07:55:11 -05:00
PikPikcU ca3af4527d
Update iceflow-vpn-disclosure.yaml 2021-08-10 14:31:05 +07:00
PikPikcU 2956610eab
Create iceflow-vpn-disclosure.yaml 2021-08-10 10:02:17 +07:00
Muhammad Daffa 999a8febb9
Update laravel-env.yaml 2021-08-10 09:54:37 +07:00
Sandeep Singh a6e3a6a458
Merge branch 'master' into master 2021-08-09 16:09:41 +05:30
adriyansyah-mf 8ab6fc07bc
Update laravel-env.yaml 
added new path
 2021-08-09 13:43:29 +07:00
sandeep b86e8eabf9 Update codeigniter-env.yaml 2021-08-08 01:22:58 +05:30
sandeep a5500cca02 Additional optional matcher 2021-08-08 01:19:15 +05:30
sandeep 5767a0d5a2 Merge branch 'master' of https://github.com/projectdiscovery/nuclei-templates into pr/1241 2021-08-08 01:13:41 +05:30
sandeep b111aeadc3 Update laravel-env.yaml 2021-08-08 01:11:14 +05:30
PikPikcU 31a77d4e02
Update symfony-profiler.yaml 2021-08-07 09:19:05 +07:00
PikPikcU f01678b9c6
Update symfony-database-config.yaml 2021-08-07 09:18:02 +07:00
sandeep 685183858e minor update 2021-08-06 23:35:35 +05:30
sandeep 30c5d2c3b8 Update ruijie-eg-password-leak.yaml 2021-08-06 23:07:27 +05:30
sandeep 6a3a7ae691 password extractor 2021-08-06 23:04:32 +05:30
sandeep fc1af10daa Added ruijie-eg-password-leak 2021-08-06 22:42:41 +05:30
PikPikcU 5952685f5c
Create ruijie-nbr1300g-cli-password-leak.yaml 2021-08-06 17:46:57 +07:00
sandeep 24efdfd678 Update qdpm-info-leak.yaml 2021-08-05 16:17:30 +05:30
Prince Chaddha 8e0a730e3d
Rename vulnerabilities/other/qdpm-info-leak.yaml to exposures/configs/qdpm-info-leak.yaml 2021-08-05 16:10:17 +05:30
Geeknik Labs a02ae7bef7
Update general-tokens.yaml 2021-08-02 12:27:07 -05:00
Geeknik Labs 61bb675add
Update general-tokens.yaml 
squashing false positives
 2021-08-02 12:25:54 -05:00
Geeknik Labs 3c713144d4
Update general-tokens.yaml 
fix more fp
 2021-08-02 10:17:06 -05:00
Sandeep Singh 162cf14687
Merge pull request #782 from hahwul/master 
Create github-page-files.yml
 2021-07-30 18:15:28 +05:30
sandeep 7fe896ae45 Update github-page-config.yaml 2021-07-30 18:13:32 +05:30
sandeep efb5b9e7a3 Added tags 2021-07-30 18:12:12 +05:30
sandeep 51915f8f9a Template improvements 2021-07-30 18:01:05 +05:30
nxnjz a7f75416f0
Update and rename appsec-yml-disclosure.yaml to appspec-yml-disclosure.yaml 2021-07-30 13:16:30 +03:00
Geeknik Labs 5e3cc340ee
Update credentials-disclosure.yaml 
I feel like we should make these regex case insensitive so they match unexpected variations. For example, the `api[_-]?key(=| =|:| :)` regex before my change would match `apikey :`, `api_key =` and `api-key:` but not `apiKey=`.
 2021-07-29 14:08:41 -05:00
Nicolas Mattiocco 8da48bbea8
Update git-config.yaml 
improvement suggestion to keep it simple and flexible
 2021-07-29 15:17:15 +02:00
sandeep e9210d80bf strict negative matchers 2021-07-26 15:14:33 +05:30
sandeep b990243906 uniform tags 2021-07-26 14:25:43 +05:30
sandeep d4a3f345fb tags update 2021-07-26 14:23:27 +05:30
Sandeep Singh eaa2561c70
Merge pull request #2170 from geeknik/patch-13 
Create development-logs.yaml
 2021-07-26 14:21:12 +05:30
Sandeep Singh c15e827b84
Update development-logs.yaml 2021-07-26 14:18:24 +05:30
Sandeep Singh 7c7e3f06bc
Merge pull request #2169 from geeknik/patch-12 
Create production-logs.yaml
 2021-07-26 01:53:26 +05:30
Sandeep Singh 09a5ea061a
Update production-logs.yaml 2021-07-26 01:52:26 +05:30
Sandeep Singh 9f66b8925d
Merge pull request #2115 from geeknik/patch-5 
Update general-tokens.yaml
 2021-07-26 01:47:39 +05:30
Sandeep Singh 5441d97bea
Merge pull request #2131 from geeknik/patch-8 
Create wp-app-log.yaml
 2021-07-26 01:22:37 +05:30
Sandeep Singh d43b57b56a
Update wp-app-log.yaml 2021-07-26 01:21:43 +05:30
Sandeep Singh 130f3576b6
Merge pull request #2130 from geeknik/patch-7 
Create cold-fusion-cfcache-map.yaml
 2021-07-26 01:17:15 +05:30
Sandeep Singh 037c531d58
Update cold-fusion-cfcache-map.yaml 2021-07-26 01:15:39 +05:30
sandeep c9f5f01bb9 minor update 2021-07-26 00:39:16 +05:30
Geeknik Labs 41c41abdb7
Update exposed-gitignore.yaml 
Fixes the issue here: https://github.com/projectdiscovery/nuclei-templates/issues/1898#issuecomment-886237512
 2021-07-25 18:29:28 +00:00
Geeknik Labs 7afc39cb32
Create development-logs.yaml 2021-07-24 14:29:43 -05:00
Geeknik Labs e428dc6454
Create production-logs.yaml 2021-07-24 14:28:33 -05:00
Sandeep Singh 4b444af3c4
Merge pull request #2125 from DhiyaneshGeek/master 
17 New Templates Added
 2021-07-24 03:26:09 +05:30
sandeep b1d8ab1193 more matchers update 2021-07-24 03:13:09 +05:30
sandeep 1ea3b8a8bf matcher updates 2021-07-24 03:03:31 +05:30
sandeep 9788ebbf27 more matcher updates 2021-07-24 02:54:09 +05:30
sandeep 19533bcc08 removed content type check to avoid valid matches 2021-07-24 02:53:11 +05:30
Geeknik Labs 4795c084e1
Update nginx-config.yaml 
fixes a false positive
 2021-07-23 15:18:51 -05:00
Sandeep Singh a957dc230c
Update exposures/files/snyk-ignore-file-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-24 00:51:05 +05:30
sandeep 96c78d8695 additional negative matcher 2021-07-24 00:39:30 +05:30
sandeep 1f4f8ce332 matcher update 2021-07-24 00:30:53 +05:30
sandeep 840d3ee4e3 Update github-workflows-disclosure.yaml 
removing content type check as this might miss valid results with no content type in response
 2021-07-24 00:26:56 +05:30
Sandeep Singh 5f4127cdaf
Update exposures/files/ruby-on-rails-secret-token-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-24 00:24:45 +05:30
Sandeep Singh b0b737e0eb
Update exposures/configs/hp-ilo-serial-key-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-24 00:24:26 +05:30
Sandeep Singh 2dbeb70480
Update exposures/configs/github-workflows-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-24 00:24:11 +05:30
Sandeep Singh fccc31717a
Update exposures/configs/github-workflows-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-24 00:16:13 +05:30
sandeep 763591bc97 lint fixes 2021-07-24 00:12:28 +05:30
Dhiyaneshwaran 1d9979fead
Update exposures/configs/hp-ilo-serial-key-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 17:54:36 +05:30
Dhiyaneshwaran 3528cd7bef
Update exposures/configs/github-workflows-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 17:54:27 +05:30
Dhiyaneshwaran 62c2693d34
Update exposures/configs/appsec-yml-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 17:54:17 +05:30
Dhiyaneshwaran 834d6b8f2a
Update dockerfile-hidden-disclosure.yaml 2021-07-23 17:49:32 +05:30
Dhiyaneshwaran 1671b074c0
Update exposures/logs/roundcube-log-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:47:22 +05:30
Dhiyaneshwaran 6754ef5dd2
Update exposures/files/thumbs-db-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:47:16 +05:30
Dhiyaneshwaran 7b5af09772
Update exposures/files/snyk-ignore-file-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:47:06 +05:30
Dhiyaneshwaran fd2df6ca59
Update exposures/files/snyk-ignore-file-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:47:00 +05:30
Dhiyaneshwaran fd918ee65c
Update exposures/files/pyproject-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:46:52 +05:30
Dhiyaneshwaran f21894a431
Update exposures/files/pyproject-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:46:46 +05:30
Dhiyaneshwaran bdc15afe1b
Update exposures/files/putty-private-key-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:46:40 +05:30
Dhiyaneshwaran cb73dc4630
Update exposures/files/putty-private-key-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:46:32 +05:30
Dhiyaneshwaran e96b8ca338
Update exposures/files/php-user-ini-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:46:26 +05:30
Dhiyaneshwaran c4a1a12fe8
Update exposures/files/php-user-ini-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:46:06 +05:30
Dhiyaneshwaran 80b1205379
Update exposures/configs/kubernetes-kustomization-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:45:58 +05:30
Dhiyaneshwaran a96c9c74c6
Update exposures/configs/kubernetes-kustomization-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:45:52 +05:30
Dhiyaneshwaran 4051f03440
Update exposures/configs/kubernetes-kustomization-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:45:44 +05:30
Dhiyaneshwaran 1646db1156
Update exposures/configs/hp-ilo-serial-key-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:45:37 +05:30
Dhiyaneshwaran dd025100e7
Update exposures/configs/github-workflows-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:45:30 +05:30
Dhiyaneshwaran ea45cdd369
Update exposures/configs/git-credentials-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:44:54 +05:30
Dhiyaneshwaran 9271fa9492
Update exposures/configs/dockerfile-hidden-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:44:47 +05:30
Dhiyaneshwaran 39f23522e4
Update exposures/configs/dockerfile-hidden-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:44:38 +05:30
Dhiyaneshwaran 838002d77a
Update exposures/configs/appsec-yml-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-23 09:44:23 +05:30
Dhiyaneshwaran 5b0b7a6781
Update exposures/logs/roundcube-log-disclosure.yaml 
Co-authored-by: Toufik Airane <toufik.airane@appsectribe.com>
 2021-07-22 23:10:43 +05:30
Prince Chaddha 5455222476
Merge pull request #2140 from pussycat0x/master 
New templates added
 2021-07-22 17:53:25 +05:30
Prince Chaddha 4e3c869c79
Update sensitive-storage-data-exposure.yaml 2021-07-22 17:50:16 +05:30
sandeep 7d72783090 WIP improvements 2021-07-22 16:32:37 +05:30
pussycat0x 9aa36cd028
Add files via upload 2021-07-22 08:07:25 +05:30
Prince Chaddha 7666d8d1b6
Update cold-fusion-cfcache-map.yaml 2021-07-22 00:04:54 +05:30
Geeknik Labs ee85819e34
Create wp-app-log.yaml 2021-07-21 13:22:01 -05:00
Geeknik Labs 41daa90400
Create cold-fusion-cfcache-map.yaml 2021-07-21 13:19:40 -05:00
Dhiyaneshwaran 59693f29e5
Create thumbs-db-disclosure.yaml 2021-07-21 14:07:47 +05:30
Dhiyaneshwaran 5200f16d4d
Create snyk-ignore-file-disclosure.yaml 2021-07-21 14:05:40 +05:30
Dhiyaneshwaran 733e98f1e2
Create ruby-on-rails-secret-token-disclosure.yaml 2021-07-21 14:03:20 +05:30
Dhiyaneshwaran 929250a6af
Create roundcube-log-disclosure.yaml 2021-07-21 14:01:09 +05:30
Dhiyaneshwaran f66e7676a6
Create pyproject-disclosure.yaml 2021-07-21 13:57:17 +05:30
Dhiyaneshwaran 6bfc270917
Update php-user-ini-disclosure.yaml 2021-07-21 13:54:09 +05:30
Dhiyaneshwaran 4d53c1f2a5
Create putty-private-key-disclosure.yaml 2021-07-21 13:53:55 +05:30
Dhiyaneshwaran f20c444b4e
Create php-user-ini-disclosure.yaml 2021-07-21 13:49:50 +05:30
Dhiyaneshwaran 419456f277
Update kubernetes-kustomization-disclosure.yaml 2021-07-21 13:39:36 +05:30
Dhiyaneshwaran 6e76e533c8
Create kubernetes-kustomization-disclosure.yaml 2021-07-21 13:36:59 +05:30
Dhiyaneshwaran bf4d51136a
Create hp-ilo-serial-key-disclosure.yaml 2021-07-21 13:29:52 +05:30
Dhiyaneshwaran 15a19dea3d
Create github-workflows-disclosure.yaml 2021-07-21 13:21:05 +05:30
Dhiyaneshwaran 3425a83d38
Create git-credentials-disclosure.yaml 2021-07-21 11:19:35 +05:30
Dhiyaneshwaran 01bd0b38f4
Create dockerfile-hidden-disclosure.yaml 2021-07-21 11:13:50 +05:30
Dhiyaneshwaran 4f5a9f7d94
Create appsec-yml-disclosure.yaml 2021-07-21 11:09:04 +05:30
Geeknik Labs f9b3724f87
Update general-tokens.yaml 2021-07-20 16:46:25 -05:00
Philippe Delteil aec3d87e72
Update exposed-gitignore.yaml 
New conditions to avoid false positives.
 2021-07-17 23:15:08 -04:00
sandeep e232ba52d4 Added additional path 2021-07-14 18:24:26 +05:30
sandeep 950cc356ee path update 2021-07-14 17:39:50 +05:30
sandeep 367bfd4441 Added keycloak-openid-config 2021-07-14 17:38:01 +05:30
Sandeep Singh 360f8d9a94
Update exposed-glances-api.yaml 2021-07-14 14:20:18 +05:30
Prince Chaddha 5838f76600
Create exposed-glances-api.yaml 2021-07-14 12:37:51 +05:30
sandeep 6dd92167eb minor updates 2021-07-13 19:35:58 +05:30
Dhiyaneshwaran b283f65482
Create exposed-prometheus-log.yaml 2021-07-13 19:24:13 +05:30
Sandeep Singh 920255635b
Merge pull request #1876 from pussycat0x/master 
web-ftp
 2021-07-13 01:53:15 +05:30
sandeep 3c7f4ed78c matcher update 2021-07-13 01:22:06 +05:30
pussycat0x 7947954aba
Add files via upload 2021-07-12 23:23:30 +05:30
sandeep 7f1b075cf0 Temporally removing as matcher needs to be improved. 2021-07-11 13:37:39 +05:30
Sandeep Singh 72781f8dfa
Merge branch 'master' into master 2021-07-10 15:07:33 +05:30
sandeep a35c34127c Added content length condition 2021-07-10 00:40:09 +05:30
Sandeep Singh 684761587d
Merge pull request #1913 from projectdiscovery/exposed-gitignore 
Added exposed-gitignore
 2021-07-09 22:52:44 +05:30
sandeep 899f1e732b Added exposed-gitignore 2021-07-09 22:50:20 +05:30
Geeknik Labs a77a3db701
Update symfony-database-config.yaml 
Fixes #1910
 2021-07-09 06:23:28 +00:00
Prince Chaddha 124b960503
Update lucee-stack-trace.yaml 2021-07-09 09:50:42 +05:30
Prince Chaddha 64b36e181b
Update lucee-stack-trace.yaml 2021-07-09 09:45:38 +05:30
Dhiyaneshwaran b3bd3b4355
Create lucee-stack-trace.yaml 2021-07-09 01:44:30 +05:30
sandeep cd8e485541 Added Git Logs 2021-07-07 20:51:33 +05:30
Sandeep Singh 1b65d294d3
Merge pull request #1878 from jeenikaa/master 
templates added
 2021-07-07 18:57:46 +05:30
sandeep 9d78a1656b few updates 2021-07-07 18:52:35 +05:30
Dhiyaneshwaran 648def7a9c
Update strapi-page.yaml 2021-07-05 22:45:34 +05:30
Dhiyaneshwaran eb0d1f9766
Create strapi-page.yaml 2021-07-05 22:31:57 +05:30
sandeep afcbe4cfe4 minor updates 2021-07-04 01:22:08 +05:30
Dhiyaneshwaran 532bf58f3d
Update jboss-seam-debug-page.yaml 2021-07-02 20:52:09 +05:30
Dhiyaneshwaran a53902e99c
Create jboss-seam-debug-page.yaml 2021-07-01 22:34:38 +05:30
sandeep f97ae5ceba minor update to check full header 2021-06-30 19:29:26 +05:30
pdparchitect 199ee498f8
Update javascript-env.yaml 
Added additional matchers to broaden detection
 2021-06-30 13:55:21 +01:00
sandeep 6d12b9bb6b Added additional matcher 2021-06-30 17:53:27 +05:30
sandeep 9bd750e28e Update javascript-env.yaml 2021-06-30 16:07:25 +05:30
Petko D. Petkov e04b943dce Detect javascript environment configs. 2021-06-30 10:17:58 +00:00
sandeep 96fc7bb341 more strict matchers 2021-06-30 03:26:01 +05:30
sandeep 102d0b21b4 Removing duplicate template 2021-06-28 20:07:22 +05:30
sandeep 525c0cce48 misc changes 2021-06-24 00:38:16 +05:30
Geeknik Labs d7eae53622
Update general-tokens.yaml 
fix more FP
 2021-06-23 15:50:38 +00:00
Geeknik Labs c2eb8b2df2
Update general-tokens.yaml 
Better false positive protection.
https://regex101.com/r/taSYEa/1
 2021-06-23 15:45:55 +00:00
sandeep fd63d24d53 Additional matcher 2021-06-11 16:20:34 +05:30
sandeep c539205559 Added phalcon-framework-source 2021-06-11 16:16:05 +05:30