nuclei-templates/tokens/http-username-password.yaml

21 lines
398 B
YAML

id: http-username-password
# Extract something like https://username:password@vulnerable.com
# can be improved
info:
name: Http usernamme password
author: nadino
severity: medium
requests:
- method: GET
path:
- "{{BaseURL}}/"
extractors:
- type: regex
part: body
regex:
- '(ftp|ftps|http|https)://[A-Za-z0-9-_:\.~]+(@)'