forked from geeknik/the-nuclei-templates
-
Notifications
You must be signed in to change notification settings - Fork 0
/
config-ini.yaml
170 lines (165 loc) · 6.32 KB
/
config-ini.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
id: config-ini
info:
name: Config Exposure
author: nullenc0de
severity: medium
description: Config ini Exposure
requests:
- method: GET
path:
- "{{BaseURL}}/.config.inc.php.swo"
- "{{BaseURL}}/.config.inc.php.swp"
- "{{BaseURL}}/.config.inc.php.swp"
- "{{BaseURL}}/backup.config.inc.php"
- "{{BaseURL}}/config.inc.php"
- "{{BaseURL}}/config.inc.php - Copy.php"
- "{{BaseURL}}/config.inc.php copy.php"
- "{{BaseURL}}/config.inc.php_backup"
- "{{BaseURL}}/config.inc.php_good"
- "{{BaseURL}}/config.inc.php-backup"
- "{{BaseURL}}/config.inc.php-backup.php"
- "{{BaseURL}}/config.inc.php-backup.txt"
- "{{BaseURL}}/config.inc.php-backup1.txt"
- "{{BaseURL}}/config.inc.php-good"
- "{{BaseURL}}/config.inc.php-sample.php"
- "{{BaseURL}}/config.inc.php-sample.php.bak"
- "{{BaseURL}}/config.inc.php-sample.php~"
- "{{BaseURL}}/config.inc.php.backup"
- "{{BaseURL}}/config.inc.php.bak"
- "{{BaseURL}}/config.inc.php.bkp"
- "{{BaseURL}}/config.inc.php.cfg"
- "{{BaseURL}}/config.inc.php.conf"
- "{{BaseURL}}/config.inc.php.data"
- "{{BaseURL}}/config.inc.php.dump"
- "{{BaseURL}}/config.inc.php.htm"
- "{{BaseURL}}/config.inc.php.html"
- "{{BaseURL}}/config.inc.php.local.php"
- "{{BaseURL}}/config.inc.php.old"
- "{{BaseURL}}/config.inc.php.old.old"
- "{{BaseURL}}/config.inc.php.ORG"
- "{{BaseURL}}/config.inc.php.orig"
- "{{BaseURL}}/config.inc.php.original"
- "{{BaseURL}}/config.inc.php"
- "{{BaseURL}}/config.inc.php_"
- "{{BaseURL}}/config.inc.php__"
- "{{BaseURL}}/config.inc.php______"
- "{{BaseURL}}/config.inc.php__olds"
- "{{BaseURL}}/config.inc.php_1"
- "{{BaseURL}}/config.inc.php_backup"
- "{{BaseURL}}/config.inc.php_bak"
- "{{BaseURL}}/config.inc.php_bk"
- "{{BaseURL}}/config.inc.php_new"
- "{{BaseURL}}/config.inc.php_old"
- "{{BaseURL}}/config.inc.php_old2017"
- "{{BaseURL}}/config.inc.php_old2018"
- "{{BaseURL}}/config.inc.php_old2019"
- "{{BaseURL}}/config.inc.php_old2020"
- "{{BaseURL}}/config.inc.php_orig"
- "{{BaseURL}}/config.inc.php_original"
- "{{BaseURL}}/config.inc.php-"
- "{{BaseURL}}/config.inc.php-backup"
- "{{BaseURL}}/config.inc.php-bak"
- "{{BaseURL}}/config.inc.php-n"
- "{{BaseURL}}/config.inc.php-o"
- "{{BaseURL}}/config.inc.php-old"
- "{{BaseURL}}/config.inc.php-original"
- "{{BaseURL}}/config.inc.php-save"
- "{{BaseURL}}/config.inc.php-work"
- "{{BaseURL}}/config.inc.php.0"
- "{{BaseURL}}/config.inc.php.1"
- "{{BaseURL}}/config.inc.php.2"
- "{{BaseURL}}/config.inc.php.3"
- "{{BaseURL}}/config.inc.php.4"
- "{{BaseURL}}/config.inc.php.5"
- "{{BaseURL}}/config.inc.php.6"
- "{{BaseURL}}/config.inc.php.7"
- "{{BaseURL}}/config.inc.php.9"
- "{{BaseURL}}/config.inc.php.a"
- "{{BaseURL}}/config.inc.php.aws"
- "{{BaseURL}}/config.inc.php.azure"
- "{{BaseURL}}/config.inc.php.b"
- "{{BaseURL}}/config.inc.php.backup"
- "{{BaseURL}}/config.inc.php.backup.txt"
- "{{BaseURL}}/config.inc.php.bak"
- "{{BaseURL}}/config.inc.php.bk"
- "{{BaseURL}}/config.inc.php.bkp"
- "{{BaseURL}}/config.inc.php.c"
- "{{BaseURL}}/config.inc.php.com"
- "{{BaseURL}}/config.inc.php.cust"
- "{{BaseURL}}/config.inc.php.dev"
- "{{BaseURL}}/config.inc.php.dump"
- "{{BaseURL}}/config.inc.php.in"
- "{{BaseURL}}/config.inc.php.local"
- "{{BaseURL}}/config.inc.php.maj"
- "{{BaseURL}}/config.inc.php.new"
- "{{BaseURL}}/config.inc.php.old"
- "{{BaseURL}}/config.inc.php.org"
- "{{BaseURL}}/config.inc.php.orig"
- "{{BaseURL}}/config.inc.php.original"
- "{{BaseURL}}/config.inc.php.php-bak"
- "{{BaseURL}}/config.inc.php.prod"
- "{{BaseURL}}/config.inc.php.production"
- "{{BaseURL}}/config.inc.php.sample"
- "{{BaseURL}}/config.inc.php.save"
- "{{BaseURL}}/config.inc.php.save.1"
- "{{BaseURL}}/config.inc.php.stage"
- "{{BaseURL}}/config.inc.php.staging"
- "{{BaseURL}}/config.inc.php.swn"
- "{{BaseURL}}/config.inc.php.swo"
- "{{BaseURL}}/config.inc.php.swp"
- "{{BaseURL}}/config.inc.php.tar"
- "{{BaseURL}}/config.inc.php.temp"
- "{{BaseURL}}/config.inc.php.tmp"
- "{{BaseURL}}/config.inc.php.txt"
- "{{BaseURL}}/config.inc.php.uk"
- "{{BaseURL}}/config.inc.php.us"
- "{{BaseURL}}/config.inc.php="
- "{{BaseURL}}/config.inc.php~"
- "{{BaseURL}}/config.inc.php~~~"
- "{{BaseURL}}/config.inc.php1"
- "{{BaseURL}}/config.inc.phpa"
- "{{BaseURL}}/config.inc.phpb"
- "{{BaseURL}}/config.inc.phpbak"
- "{{BaseURL}}/config.inc.phpc"
- "{{BaseURL}}/config.inc.phpd"
- "{{BaseURL}}/config.inc.phpn"
- "{{BaseURL}}/config.inc.phpnew"
- "{{BaseURL}}/config.inc.phpold"
- "{{BaseURL}}/config.inc.phporiginal"
- "{{BaseURL}}/config.inc.phptmp"
- "{{BaseURL}}/config.inc.php.prod.php.txt"
- "{{BaseURL}}/config.inc.php.save"
- "{{BaseURL}}/config.inc.php.tar"
- "{{BaseURL}}/config.inc.php.temp"
- "{{BaseURL}}/config.inc.php.txt"
- "{{BaseURL}}/config.inc.php.zip"
- "{{BaseURL}}/config.inc.php~"
- "{{BaseURL}}/config.inc.phpbak"
- "{{BaseURL}}/.config.inc.php.bck"
- "{{BaseURL}}/config.inc.php.back"
- "{{BaseURL}}/config.inc.php.copy"
- "{{BaseURL}}/config.inc.php.dat"
- "{{BaseURL}}/config.inc.php.db"
- "{{BaseURL}}/config.inc.php._inc"
- "{{BaseURL}}/config.inc.php.back"
- "{{BaseURL}}/config.inc.php.bck"
- "{{BaseURL}}/config.inc.php.copy"
- "{{BaseURL}}/config.inc.php.dat"
- "{{BaseURL}}/config.inc.php.db"
- "{{BaseURL}}/config.inc.php.tar.gz"
- "{{BaseURL}}/config.inc.php.test"
- "{{BaseURL}}/config.inc.php.zip"
- "{{BaseURL}}/config.inc.php.tar.gz"
- "{{BaseURL}}/config.inc.php.test"
- "{{BaseURL}}/config.inc.php.tmp"
- "{{BaseURL}}/config.inc.php_inc"
matchers-condition: and
matchers:
- type: word
words:
- configuration
- password
condition: and
- type: status
status:
- 200