id: boa-web-server info: name: Boa Web Server - Detect author: johnk3r severity: info description: | Boa is a single-tasking HTTP server. That means that unlike traditional web servers, it does not fork for each incoming connection, nor does it fork many copies of itself to handle multiple connections. reference: - https://www.microsoft.com/en-us/security/blog/2022/11/22/vulnerable-sdk-components-lead-to-supply-chain-risks-in-iot-and-ot-environments/ - http://www.boa.org/ classification: cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N cwe-id: CWE-200 cpe: cpe:2.3:a:boa:boa:*:*:*:*:*:*:*:* metadata: verified: true max-request: 1 shodan-query: "Server: Boa/" product: boa vendor: boa tags: boa,tech http: - method: GET path: - "{{BaseURL}}" matchers-condition: and matchers: - type: regex part: header regex: - "Server: Boa/" extractors: - type: kval part: header kval: - Server # digest: 4b0a00483046022100ab7cab58156492599bfaf72377d34eb2f86a5e998e045c0a6261e46b0ad1d508022100a20c9500e34f1c72e13ebafea9d105ff0f4ffdc9c5d8be84a6408aa65129c653:922c64590222798bb761d5b6d8e72950