31 lines
953 B
YAML
31 lines
953 B
YAML
id: akamai-bot-manager-detect
|
|
|
|
info:
|
|
name: Akamai Bot Manager Protection - Detect
|
|
author: Fazle Arefin
|
|
severity: info
|
|
description: |
|
|
Checks if the website is protected by Akamai Bot Manager
|
|
reference:
|
|
- https://www.akamai.com/legal/manage-cookie-preferences
|
|
- https://techdocs.akamai.com/identity-cloud/docs/hosted-login-cookies-and-local-storage-1
|
|
metadata:
|
|
max-request: 1
|
|
tags: akamai,bot,security,detect
|
|
|
|
http:
|
|
- method: GET
|
|
path:
|
|
- "{{BaseURL}}"
|
|
|
|
matchers:
|
|
- type: regex
|
|
part: header
|
|
regex:
|
|
- 'Set-Cookie:\s*_abck='
|
|
- 'Set-Cookie:\s*bm_sv='
|
|
- 'Set-Cookie:\s*ak_bmsc='
|
|
- 'Set-Cookie:\s*bm_sz='
|
|
- 'Set-Cookie:\s*bm_mi='
|
|
condition: or
|
|
# digest: 490a0046304402201a37ac1d12a970221c94e8ccca8ac658de8dfadc450e4597ebb812c5af1d4708022069e6fb91de4d647fe294b2a430c8174770eca977c7c2969608ca18cef4efa604:922c64590222798bb761d5b6d8e72950 |