id: shell-box info: name: Shell In A Box - Detect author: irshad ahamed severity: info description: | Shell In A Box implements a web server that can export arbitrary command line tools to a web based terminal emulator reference: - https://github.com/shellinabox/shellinabox - https://www.cvedetails.com/vulnerability-list/vendor_id-15771/product_id-33062/Shellinabox-Project-Shellinabox.html metadata: verified: true shodan-query: http.favicon.hash:-629968763 max-request: 1 tags: shell,emulator,detect,panel,login http: - method: GET path: - "{{BaseURL}}" host-redirects: true max-redirects: 2 matchers-condition: and matchers: - type: word words: - '