admin/nuclei-templates
1
0
Fork 0
mirror of https://github.com/projectdiscovery/nuclei-templates.git synced 2026-02-15 15:13:30 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
e2e9901bf9ec94de03e5ed7490847aac0ccbc598
nuclei-templates/http/exposures/configs/javascript-env-config.yaml

55 lines
1.4 KiB
YAML
Raw Normal View History

Update Duplicate id
2025-01-25 04:14:22 +05:30
id: javascript-env-config
Detect javascript environment configs.
2021-06-30 10:17:58 +00:00
info:
Enhancement: exposures/configs/javascript-env.yaml by md
2023-02-09 16:20:21 -05:00
name: JavaScript Environment Configuration - Detect
Update javascript-env.yaml Fix FP
2022-03-20 17:06:28 -05:00
author: pdp,geeknik
Detect javascript environment configs.
2021-06-30 10:17:58 +00:00
severity: low
Enhancement: exposures/configs/javascript-env.yaml by md
2023-02-09 16:20:21 -05:00
description: Multiple common JavaScript environment configuration files were detected.
Added max request counter of each template
2023-04-28 13:41:21 +05:30
metadata:
max-request: 6
templateman update
2023-10-14 16:57:55 +05:30
tags: javascript,config,exposure
Detect javascript environment configs.
2021-06-30 10:17:58 +00:00
Refactoring the directory structure based on protocols (#7137) * moving http templates * updated cves.json * moved network CVEs * updated scripts * updated workflows * updated requests to http * replaced network to tcp --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com>
2023-04-27 09:58:59 +05:30
http:
Detect javascript environment configs.
2021-06-30 10:17:58 +00:00
- method: GET
path:
- "{{BaseURL}}/env.js"
- "{{BaseURL}}/env.development.js"
- "{{BaseURL}}/env.production.js"
- "{{BaseURL}}/env.test.js"
- "{{BaseURL}}/env.dev.js"
- "{{BaseURL}}/env.prod.js"
Added additional matcher
2021-06-30 17:53:27 +05:30
Detect javascript environment configs.
2021-06-30 10:17:58 +00:00
matchers-condition: and
matchers:
- type: status
status:
- 200
Added additional matcher
2021-06-30 17:53:27 +05:30
minor update to check full header
2021-06-30 19:29:26 +05:30
- type: dsl
dsl:
removed deprecated header syntax with latest one
2023-06-20 02:40:30 +05:30
- "contains(tolower(header), 'content-type: application/javascript')"
Added additional matcher
2021-06-30 17:53:27 +05:30
- type: word
part: body
words:
- "module.exports"
- "const audience"
- "const domain"
Update javascript-env.yaml Added additional matchers to broaden detection
2021-06-30 13:55:21 +01:00
- "NODE_ENV"
- "LOG_LEVEL"
- "TOKEN"
- "KEY"
- "PASSWORD"
- "VERSION"
Update javascript-env.yaml Fix FP
2022-03-20 17:06:28 -05:00
condition: or
Update javascript-env.yaml
2022-03-20 19:51:06 -05:00
Update javascript-env.yaml Fix FP
2022-03-20 17:06:28 -05:00
- type: word
part: body
words:
- "Bootstrap"
- "jQuery"
- "CSS TRANSITION SUPPORT"
Update javascript-env.yaml
2024-10-08 00:36:33 +05:30
- "is_ad_blocked"
Update javascript-env.yaml Fix FP
2022-03-20 17:06:28 -05:00
condition: or
Enhancement: exposures/configs/javascript-env.yaml by md
2023-02-09 16:20:21 -05:00
negative: true
chore: sign templates 🤖
2025-01-24 22:53:08 +00:00
# digest: 4b0a00483046022100d337753dd06f7741c4c4ceef7606caa74c5185a842235a1e91c12716e5d325b0022100de3118eba852d7a1a1870a34bf12ac53eb9667e3ac06def2a9b209337d5314e8:922c64590222798bb761d5b6d8e72950
Reference in New Issue Copy Permalink