nuclei-templates/http/exposed-panels/shell-box.yaml

37 lines
1.0 KiB
YAML

id: shell-box
info:
name: Shell In A Box - Detect
author: irshad ahamed
severity: info
description: |
Shell In A Box implements a web server that can export arbitrary command line tools to a web based terminal emulator
reference:
- https://github.com/shellinabox/shellinabox
- https://www.cvedetails.com/vulnerability-list/vendor_id-15771/product_id-33062/Shellinabox-Project-Shellinabox.html
metadata:
verified: true
max-request: 1
shodan-query: http.favicon.hash:-629968763
tags: shell,emulator,detect,panel,login
http:
- method: GET
path:
- "{{BaseURL}}"
host-redirects: true
max-redirects: 2
matchers-condition: and
matchers:
- type: word
words:
- '<title>Shell In A Box</title>'
- type: status
status:
- 200
# digest: 4b0a00483046022100e2dd0f9ecb69473d11fa25fac2d55fb940726a8b6d04be8e754e36eb1df03fa60221008a14793ab842dfa06edaecc6c90ac72ce5989ac9482ffd2a1824f5dffd0cd538:922c64590222798bb761d5b6d8e72950