nuclei-templates/http/exposed-panels/shell-box.yaml

40 lines
1.2 KiB
YAML

id: shell-box
info:
name: Shell In A Box - Detect
author: irshad ahamed
severity: info
description: |
Shell In A Box implements a web server that can export arbitrary command line tools to a web based terminal emulator
reference:
- https://github.com/shellinabox/shellinabox
- https://www.cvedetails.com/vulnerability-list/vendor_id-15771/product_id-33062/Shellinabox-Project-Shellinabox.html
classification:
cpe: cpe:2.3:a:shellinabox_project:shellinabox:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
vendor: shellinabox_project
product: shellinabox
shodan-query: http.favicon.hash:-629968763
fofa-query: icon_hash=-629968763
tags: shell,emulator,detect,panel,login,shellinabox_project
http:
- method: GET
path:
- "{{BaseURL}}"
host-redirects: true
max-redirects: 2
matchers-condition: and
matchers:
- type: word
words:
- '<title>Shell In A Box</title>'
- type: status
status:
- 200
# digest: 4a0a00473045022100e319536c0574201f272fb35486b22c358a851c08b63b81673a34e6ce633e0288022073494e268c66e617b168d42e1b81a2f5c4cde17afe382cdca49bde1801b17d93:922c64590222798bb761d5b6d8e72950