158914d4db
Create artifactory-anonymous-deploy.yaml
2021-06-06 19:37:32 +05:30
0ca3da9a28
Create apple-app-site-association.yaml
2021-06-06 19:36:34 +05:30
c355e326ec
Merge pull request #56 from projectdiscovery/master
...
Updation
2021-06-06 19:34:38 +05:30
da3d19eecb
Auto Update README [Sun Jun 6 12:28:42 UTC 2021] 🤖
2021-06-06 12:28:42 +00:00
1d07ace8a5
Merge pull request #1634 from DhiyaneshGeek/master
...
Exposed jQuery File Upload
2021-06-06 17:58:25 +05:30
6649abf131
Update exposed-jquery-file-upload.yaml
2021-06-06 17:55:05 +05:30
1b879d1dc7
Added missing condition
2021-06-06 17:44:27 +05:30
25fdd0068e
Merge pull request #1632 from geeknik/patch-103
...
Update rails-database-config.yaml
2021-06-06 14:16:53 +05:30
9b3c3ec7a0
tags + additional string match
2021-06-06 14:14:01 +05:30
6244641122
Merge pull request #1633 from pdelteil/patch-5
...
Update smartling-takeover.yaml
2021-06-06 14:06:51 +05:30
aa01e47d28
Merge pull request #1641 from nrathaus/master
...
Spelling
2021-06-06 14:06:23 +05:30
fae9755374
Merge pull request #1639 from pdelteil/patch-9
...
Update shell-history.yaml
2021-06-06 13:40:47 +05:30
0cf8ffdc57
misc changes
2021-06-06 13:39:16 +05:30
108894bfbd
Merge pull request #1638 from pdelteil/patch-8
...
Update aws-object-listing.yaml
2021-06-06 13:19:23 +05:30
e2eaedc6a1
misc updates
2021-06-06 13:19:01 +05:30
8b0c5eaee3
Spelling
2021-06-06 10:35:09 +03:00
99550ea082
Merge pull request #1640 from pdelteil/patch-10
...
Update phpmyadmin-panel.yaml
2021-06-06 12:43:23 +05:30
5bed289288
Update phpmyadmin-panel.yaml
2021-06-06 12:41:30 +05:30
c8dd574555
Minor improvements
2021-06-06 12:07:19 +05:30
c0c29d26ba
Update phpmyadmin-panel.yaml
...
Extractor added to retrieve version.
Test
nuclei -t nuclei-templates/exposed-panels/phpmyadmin-panel.yaml -u https://mojavedata.gov
2021-06-05 22:22:14 -04:00
652da29f9a
Update shell-history.yaml
...
There are two problems with this template, it only checks for chmod commands but most importantly doesn't check for html tags. A real history file the response doesn't include html tags at all.
So, I'm adding two rules: Check for another possible commands (from real example) and adding a negative rule to discard false positives like this one:
nuclei -debug -t /home/kali/nuclei-templates/misconfiguration/shell-history.yaml -u http://777.urbanup.com
2021-06-05 22:06:30 -04:00
9014a4b0a2
Update aws-object-listing.yaml
...
Added extractor that retrieves the name of the s3 bucket.
Test
nuclei -t nuclei-templates/misconfiguration/aws-object-listing.yaml -u http://img.secnews.gr
[2021-06-06 01:19:10] [aws-object-listing] [http] [low] http://imgcdn.secnews.gr [img.secnews.gr]
2021-06-05 21:27:44 -04:00
39555505db
Update CVE-2018-18069.yaml
...
The matching condition are not enough. The payload input is not checked for reflection. This creates false positives like this one
nuclei -debug -t nuclei-templates/cves/2018/CVE-2018-18069.yaml -u https://empleo.gbtspain.com
2021-06-05 14:12:50 -04:00
888cc6418d
Update smartling-takeover.yaml
...
There's no evidence the takeover is possible. Is not possible to create an account or request for a demo.
https://github.com/EdOverflow/can-i-take-over-xyz/issues/67
2021-06-05 12:35:27 -04:00
0d82660f90
Create exposed-jquery-file-upload.yaml
2021-06-05 22:04:09 +05:30
f01abd3e6d
Update rails-database-config.yaml
...
False positive reduction. 12 matches out of 2 million hosts and they all showed a content-type of `application/octet-stream`.
2021-06-05 12:50:49 +00:00
25bfa3415c
Workflow update to include all HTTP + NETWORK templates
2021-06-05 16:00:34 +05:30
cc7e5b77ec
File rename
2021-06-05 15:57:46 +05:30
a85c1dd35a
Moving files around + duplicate remove
2021-06-05 15:57:13 +05:30
141cf6a6cf
Added router detect and information leak
...
Source - https://github.com/randomstr1ng/nuclei-sap-templates
2021-06-05 15:56:17 +05:30
ae8c130668
Moving files around
2021-06-05 15:55:01 +05:30
1b665fa704
Renamed SAP Netweaver Portal
2021-06-05 15:54:38 +05:30
5efe6056a5
Added SAP NetWeaver WebGUI Detection
...
Source - https://github.com/randomstr1ng/nuclei-sap-templates
2021-06-05 13:41:59 +05:30
8e66bed847
Updated SAP NetWeaver Detect
...
Source - https://github.com/randomstr1ng/nuclei-sap-templates
2021-06-05 13:40:28 +05:30
ac8029636e
Merge pull request #55 from projectdiscovery/master
...
Updation
2021-06-05 13:35:20 +05:30
14fa085d1b
more improvements
2021-06-05 12:15:32 +05:30
499ff32b1b
Improved SAP recon detection template
2021-06-05 10:48:17 +05:30
55c0e1b103
Improved matchers for CVE-2020-6287
2021-06-05 10:29:59 +05:30
91b33eb6a5
Test credential update
2021-06-05 10:20:28 +05:30
ba0d092d4d
Update landingi-takeover.yaml
2021-06-05 09:40:37 +05:30
8716c7c8a6
Auto Update README [Fri Jun 4 18:35:16 UTC 2021] 🤖
2021-06-04 18:35:16 +00:00
c0103e0b8a
Merge pull request #1608 from Mad-robot/master
...
Create CVE-2020-6308.yaml
2021-06-05 00:04:56 +05:30
83d359f6cf
updating tags
2021-06-05 00:02:33 +05:30
11cb8b3106
Update CVE-2020-6308.yaml
2021-06-05 00:00:50 +05:30
f5addb24c1
misc updates
2021-06-04 23:53:21 +05:30
7a2f03dcb7
Auto Update README [Fri Jun 4 16:07:44 UTC 2021] 🤖
2021-06-04 16:07:44 +00:00
29e706d101
Merge pull request #1622 from pikpikcu/patch-177
...
Create interlib-fileread
2021-06-04 21:37:23 +05:30
5d63b1bb05
Fixing the condition
2021-06-04 21:33:01 +05:30
1f6334671c
escape fix
2021-06-04 21:26:59 +05:30
b6058200cf
Auto Update README [Fri Jun 4 15:44:45 UTC 2021] 🤖
2021-06-04 15:44:45 +00:00
Dhiyaneshwaran
GitHub Action
Prince Chaddha
sandeep
Sandeep Singh
Noam Rathaus
Philippe Delteil
Geeknik Labs