nuclei-templates/http/exposed-panels/rdweb-panel.yaml

37 lines
906 B
YAML

id: rdweb-panel
info:
name: RD Web Access - Panel Detect
author: rxerium,sorrowx3
severity: info
description: |
RD web access panel was discovered.
reference:
- https://rdweb.wvd.microsoft.com/webclient
metadata:
vendor: microsoft
product: remote_desktop
verified: true
max-request: 1
shodan-query: html:"RD Web Access"
tags: panel,login,rdp,web-access
http:
- method: GET
path:
- '{{BaseURL}}/RDWeb/'
host-redirects: true
max-redirects: 1
matchers-condition: and
matchers:
- type: word
part: header
words:
- "TSWAFeatureCheckCookie=true; path=/RDWeb/"
- type: status
status:
- 302
# digest: 4a0a00473045022079617f64e836784dd49b16a6c8f805f224c4799f1560fde6441ac772b265483f022100b2bfd96f221a1673bc334aa46ab3f481f91833815dd6a6fb8353f4f73411d707:922c64590222798bb761d5b6d8e72950