nuclei-templates/ssl/mismatched-ssl-certificate....

26 lines
536 B
YAML

id: mismatched-ssl-certificate
info:
name: Mismatched SSL Certificate
author: pdteam
severity: low
reference:
- https://www.invicti.com/web-vulnerability-scanner/vulnerabilities/ssl-certificate-name-hostname-mismatch/
tags: ssl,mismatched,tls
metadata:
max-request: 1
ssl:
- address: "{{Host}}:{{Port}}"
matchers:
- type: dsl
dsl:
- "mismatched == true"
- "ip != host"
condition: and
extractors:
- type: dsl
dsl:
- '"CN: " + subject_cn'