49 lines
1.5 KiB
YAML
49 lines
1.5 KiB
YAML
id: confluence-detect
|
|
|
|
info:
|
|
name: Confluence Detection
|
|
author: philippedelteil,AdamCrosser,6mile
|
|
severity: info
|
|
description: |
|
|
This nuclei template is used to detect the presence of Confluence, a popular collaboration software.
|
|
metadata:
|
|
max-request: 5
|
|
vendor: atlassian
|
|
product: confluence_server
|
|
shodan-query: http.component:"Atlassian Confluence"
|
|
category: productivity
|
|
tags: tech,confluence,atlassian,detect
|
|
|
|
http:
|
|
- method: GET
|
|
path:
|
|
- "{{BaseURL}}/dologin.action"
|
|
- "{{BaseURL}}"
|
|
- "{{BaseURL}}/pages"
|
|
- "{{BaseURL}}/confluence"
|
|
- "{{BaseURL}}/wiki"
|
|
|
|
redirects: true
|
|
stop-at-first-match: true
|
|
matchers:
|
|
- type: dsl
|
|
dsl:
|
|
- contains(to_lower(header), '-confluence-')
|
|
- contains(to_lower(body), 'confluence-base-url')
|
|
|
|
extractors:
|
|
- type: regex
|
|
name: version
|
|
group: 1
|
|
regex:
|
|
- '<meta name="ajs-version-number" content="(.*)">'
|
|
- 'Atlassian Confluence ([a-z0-9-._]+)'
|
|
|
|
- type: regex
|
|
name: hostname
|
|
group: 1
|
|
regex:
|
|
- '<meta id="confluence-base-url" name="confluence-base-url" content="https://(.*)">'
|
|
- '<meta name="ajs-base-url" content="https://(.*)">'
|
|
- '<meta name="ajs-server-name" content="(.*)">'
|
|
# digest: 4a0a00473045022075ac5f88dbac6a7810b35fc10ebeaabc44fe7b8eb2c75e3d2fe6777781083cbe022100f51b4368c889457e3f5732edc3e817195863bdf6a512480eb716f4906461febe:922c64590222798bb761d5b6d8e72950 |