id: artifactory-anonymous-deploy

info:
  name: Artifactory anonymous deploy
  author: panch0r3d
  severity: high
  description: Artifactory anonymous repo is exposed.
  reference:
    - https://www.errno.fr/artifactory/Attacking_Artifactory.html
  metadata:
    max-request: 1
  tags: artifactory,misconfig

http:
  - method: GET
    path:
      - "{{BaseURL}}/artifactory/ui/repodata?deploy=true"

    matchers-condition: and
    matchers:
      - type: word
        words:
          - '"repoKey"'
        part: body

      - type: status
        status:
          - 200

      - type: word
        words:
          - "application/json"
        part: header
# digest: 4a0a00473045022100f29fb06d3591e6a5eaccb067ed9aa9926bb848d3c32870e6797566bd381e53570220136f83387c88d7de08333da0be8488a8b890ff90751bedccf5dea84c80988f32:922c64590222798bb761d5b6d8e72950