nuclei-templates/exposures/files/ds_store.yaml

30 lines
484 B
YAML

id: ds-store-file
info:
name: Directory Listing via DS_Store
author: 0w4ys
severity: info
tags: exposure,files
requests:
- method: GET
path:
- "{{BaseURL}}/.DS_Store"
matchers-condition: and
matchers:
- type: word
words:
- "\x00@\x00"
- type: status
status:
- 200
- type: word
words:
- "Accept-Ranges: bytes"
- "octet-stream"
condition: or
part: header