Commit Graph

42846 Commits (fa123f840251c7d30f07c01212f37b7717cae9b5)

Author SHA1 Message Date
Andrea fc797a94e1 fix crash for {{ 2020-05-08 18:31:59 +02:00
Andrea 1e49185e72 Merge branch 'master' of https://github.com/Nadino92/nuclei-templates into private 2020-05-08 18:25:09 +02:00
Andrea 455c47c220 Merge branch 'master' into private 2020-05-08 18:24:29 +02:00
Andrea 5f5cdac0d5 change noisy location 2020-05-08 15:05:58 +02:00
bad5ect0r 572105b16a
Add more strict rules for security.txt
Previous one had a few false positives. This should narrow that down.
2020-05-08 21:41:26 +10:00
bad5ect0r 4565f42799
Detect security.txt file.
Detect if a site supports responsible disclosure with a security.txt file: https://securitytxt.org/
2020-05-08 21:06:57 +10:00
Michael Blake 5caa7cecb9 Reduce false-positives for Moodle XSS 2020-05-07 21:50:17 -07:00
Michael Blake 339ac74114 Prevent false-positives for CVE-2019-19368 2020-05-07 21:47:47 -07:00
Michael Blake fe2efe6124 CVE-2019-14974 check and severity update 2020-05-07 21:45:25 -07:00
Nadino92 3d19cd5bb5 improve the regex case sensitive 2020-05-07 16:42:33 +02:00
Joao Teles d22d0745d2 Add CVE-2020-7473.yaml 2020-05-07 10:15:25 -03:00
bauthard 3eb49ad409
Merge pull request #79 from kotireddyaluri/master
jaspersoft-detect
2020-05-07 17:28:24 +05:30
bauthard e0f7914677
Merge pull request #80 from Nadino92/master
HTTP username and password
2020-05-07 17:26:57 +05:30
Nadino92 2fb9a3e57c
General tokens
General tokens
2020-05-07 12:14:17 +02:00
Nadino92 2654e0d0a4
HTTP username and password
Detect urls like https://username:password@vulnerable.com and https://apitoken@vulnerable.com
2020-05-07 12:09:09 +02:00
Koti Reddy Aluri 35335a8e68
Update jaspersoft-detect.yaml 2020-05-07 15:15:12 +05:30
Koti Reddy Aluri 85b6ec40cb
jaspersoft-detect 2020-05-07 15:10:45 +05:30
Andrea fba4aba846 add hosts file 2020-05-06 16:52:33 +02:00
Andrea 6845f96415 remove dupe docker 2020-05-06 16:51:45 +02:00
Nadino92 215b074604
Docker public repositories
Searches for public repositories with Docker API endpoint. They contain source code and it's often considered a critical issue.
2020-05-06 11:49:38 +02:00
bauthard 4c3eeba4eb
Merge pull request #77 from Nadino92/master
Slack access token
2020-05-05 20:04:57 +05:30
Nadino92 3cfabd1763
Slack access token
Fetch the slack access token for both bot/person
2020-05-05 13:01:22 +02:00
bauthard 59abc09ad1
Merge pull request #76 from Nadino92/master
Basic CORS misconfiguration
2020-05-04 22:03:08 +05:30
Nadino92 73d4a18752
CRLF injection
CRLF injection with normal encoding and unicode bypass encoding https://github.com/swisskyrepo/PayloadsAllTheThings/tree/master/CRLF%20Injection
2020-05-04 17:53:49 +02:00
Nadino92 68fff10c89
Basic CORS for flash
Detect misconfigured crossdomain.xml allowing Flash to fetch resources cross-domain
2020-05-04 17:26:17 +02:00
Nadino92 74c9ed3844
Basic CORS misconfiguration
Detect basic CORS misconfiguration allowing to fetch resources cross-domain
2020-05-04 17:03:50 +02:00
bauthard ef85a76c29
Merge pull request #75 from Nadino92/master
Adding Jenkins - asyncpeople
2020-05-04 16:54:15 +05:30
bauthard 44eae41b25
Merge pull request #74 from kotireddyaluri/patch-1
apc_info.yaml
2020-05-04 16:50:42 +05:30
Nadino92 c2a1aaab50
Add files via upload
Checking for usernames on a Jenkins machine
2020-05-04 12:38:46 +02:00
Koti Reddy Aluri 27a9823a35
Update apc_info.yaml 2020-05-04 13:43:13 +05:30
Koti Reddy Aluri c90ad5c220
Update apc_info.yaml 2020-05-04 11:56:35 +05:30
Koti Reddy Aluri d16b84ed20
apc_info.yaml
Refrence:
http://pecl.php.net/package/APCu
2020-05-04 11:53:34 +05:30
bauthard 3859839630 adding example templates 2020-05-03 13:46:45 +00:00
bauthard 61505582d5
Merge pull request #73 from hetroublemaker/master
update-aem-cms-finder
2020-05-03 02:28:48 +05:30
Aditya Soni 26e9602c5c
Update jira-service-desk-signup.yaml 2020-05-02 22:02:56 +05:30
Aditya Soni aeb208a5ee
update aem-cms-finder 2020-05-02 22:01:39 +05:30
Aditya Soni f00e9d0999
Merge pull request #2 from projectdiscovery/master
new updates
2020-05-02 21:48:44 +05:30
bauthard b4f6225df4 done with testing 2020-05-01 12:46:02 +00:00
bauthard c1ae519766 added Stargazers graph 2020-05-01 12:41:31 +00:00
bauthard 044fe3030b
Merge pull request #70 from projectdiscovery/docs-raw-requests
added raw requests
2020-04-30 03:28:28 +05:30
Mzack9999 c0045c1a7a added raw requests 2020-04-29 23:48:22 +02:00
bauthard 15979b9b92 added dns based azure takeovers 2020-04-29 10:23:17 +00:00
bauthard d10b042a93 removed few invalid takeovers 2020-04-29 01:53:12 +00:00
bauthard f5ac4f5881
Merge pull request #68 from bauthard/master
document update.
2020-04-29 04:20:13 +05:30
bauthard efe6b9e07a
Update GUIDE.md 2020-04-29 03:47:23 +05:30
bauthard fe4d30ba73
adding matchers condition example. 2020-04-29 03:32:16 +05:30
Mzack9999 891097aac2
Merge pull request #62 from projectdiscovery/feature-dsl
updated docs with dsl syntax
2020-04-28 18:40:24 +02:00
Mzack9999 dd60d61c5a
Merge pull request #66 from projectdiscovery/template-dns-valid-filter
Basic valid domains filtering (CNAME, A, Status Code check)
2020-04-28 18:22:48 +02:00
Mzack9999 127abb28a6
Merge pull request #65 from projectdiscovery/template-dns-wildcard-filter
Basic wildcard filtering by trying to resolve non existing subdomain
2020-04-28 18:22:27 +02:00
Mzack9999 19554c1b42 Basic valid domains filtering (CNAME, A, Status Code check) 2020-04-28 03:37:20 +02:00