24 lines
1.0 KiB
YAML
24 lines
1.0 KiB
YAML
id: untrusted-root-certificate
|
|
|
|
info:
|
|
name: Untrusted Root Certificate - Detect
|
|
author: pussycat0x
|
|
severity: low
|
|
description: |
|
|
A root certificate is a digital certificate issued by a trusted certificate authority that acts as a basis for other digital certificates. An untrusted root certificate is a certificate that is issued by an authority that is not trusted by the computer, and therefore cannot be used to authenticate websites or other digital certificates.
|
|
reference:
|
|
- https://www.sslmarket.com/ssl/trusted-and-untrusted-certificate
|
|
- https://www.invicti.com/web-vulnerability-scanner/vulnerabilities/ssl-untrusted-root-certificate/
|
|
metadata:
|
|
verified: true
|
|
max-request: 1
|
|
tags: ssl,untrusted,tls
|
|
ssl:
|
|
- address: "{{Host}}:{{Port}}"
|
|
matchers:
|
|
- type: dsl
|
|
dsl:
|
|
- "untrusted == true"
|
|
|
|
# digest: 4b0a00483046022100e97c9dc33dbd806a724d27baf291d77f93455cf8561f5ae87f5ef83fcbc5c873022100ba2d01e4413acfb87131bf171ffc1ff2751979fb2f42bff303194dbef2b92ff1:922c64590222798bb761d5b6d8e72950
|