id: sitecore-cms

info:
  name: Sitecore CMS - Detect
  author: RandomDhiraj
  severity: info
  description: |
    Detect Sitecore Content Management System (CMS) websites based on a redirect from the sitecore media handler URL pattern to the notfound.aspx page.
  reference: |
    https://www.sitecore.com
  classification:
    cpe: cpe:2.3:a:sitecore:cms:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: sitecore
    product: cms
    shodan-query: title:"sitecore"
  tags: cms,sitecore,tech

http:
  - method: GET
    path:
      - "{{BaseURL}}/-/media/doo-doo.ashx"

    host-redirects: true

    matchers-condition: and
    matchers:
      - type: regex
        part: header
        regex:
          - "Location: /sitecore/service/notfound.aspx"

      - type: status
        status:
          - 302
# digest: 4a0a00473045022002c636b973c4f3bd276d0df37f6dcda6a4063a1136e6ca14d3b69559fbab5620022100dcfd1be26087213d377cf25bcbb2433a13cc157b2ed204e6a056f24666ea14cc:922c64590222798bb761d5b6d8e72950