37 lines
1.4 KiB
YAML
37 lines
1.4 KiB
YAML
id: vertigis-detect
|
|
|
|
info:
|
|
name: VertiGIS - Detect
|
|
author: righettod
|
|
severity: info
|
|
description: |
|
|
VertiGIS products was detected.
|
|
reference:
|
|
- https://www.vertigis.com/
|
|
metadata:
|
|
verified: true
|
|
max-request: 9
|
|
shodan-query: http.title:"vertigis"
|
|
tags: tech,vertigis,detect
|
|
|
|
http:
|
|
- method: GET
|
|
path:
|
|
- "{{BaseURL}}/login"
|
|
- "{{BaseURL}}/GeoManLogin.aspx"
|
|
- "{{BaseURL}}/FM/GeoManLogin.aspx"
|
|
- "{{BaseURL}}/GEBman/GeoManLogin.aspx"
|
|
- "{{BaseURL}}/Geoportal/synserver"
|
|
- "{{BaseURL}}/vertigisstudio/web/designer/locales/en/translations.json"
|
|
- "{{BaseURL}}/vertigisstudio/search/designer/locales/en/translations.json"
|
|
- "{{BaseURL}}/vertigisstudio/mobile/designer/locales/en/translations.json"
|
|
- "{{BaseURL}}/vertigisstudio/accesscontrol/locales/en/translations.json"
|
|
|
|
stop-at-first-match: true
|
|
matchers:
|
|
- type: dsl
|
|
dsl:
|
|
- 'status_code == 200'
|
|
- 'contains_any(to_lower(body), "<title>vertigis", "welcome to vertigis", "vertigis fm - login", "<title>weboffice landing page" , "vertigis studio app designer", "vertigis studio web designer", "vertigis studio access control")'
|
|
condition: and
|
|
# digest: 480a004530430220728fab9b9be85ae3eb96334a3bd2f3d785aa589e1602e0e6bf619a67e845b725021f0f99ad41dc052d253acff6be795a91b24f9a6f1ecbe26a38c851eda04078d6:922c64590222798bb761d5b6d8e72950 |