From daaadb83bc8fec0050f505f9e5cdbc3147aa0035 Mon Sep 17 00:00:00 2001
From: Prince Chaddha <prince@projectdiscovery.io>
Date: Wed, 16 Jul 2025 23:02:42 +0400
Subject: [PATCH] Update NATS server enumeration template - fix typo, add
 impact/remediation, correct port, and move to network/enumeration directory

---
 .../enumeration/nats-server-enum.yaml                 | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)
 rename {javascript => network}/enumeration/nats-server-enum.yaml (83%)

diff --git a/javascript/enumeration/nats-server-enum.yaml b/network/enumeration/nats-server-enum.yaml
similarity index 83%
rename from javascript/enumeration/nats-server-enum.yaml
rename to network/enumeration/nats-server-enum.yaml
index 506e0bdd28e..4341e4e2765 100644
--- a/javascript/enumeration/nats-server-enum.yaml
+++ b/network/enumeration/nats-server-enum.yaml
@@ -9,8 +9,15 @@ info:
     This template connects to NATS servers and retrieves server configuration details including
     server ID, version, cluster information, authentication settings, and other server properties.
     Useful for network enumeration and security assessment of NATS messaging infrastructure.
+  impact: |
+    Exposure of NATS server information can reveal system configuration, version details, and authentication requirements that may aid in further reconnaissance or exploitation.
+  remediation: |
+    Ensure NATS servers are properly configured with authentication, access controls, and are not exposed to untrusted networks unless necessary.
+  reference:
+    - https://docs.nats.io/
+    - https://github.com/nats-io/nats-server
   metadata:
-    verfied: true
+    verified: true
     shodan-query: product:"NATS Server"
     max-request: 1
   tags: js,network,nats,tcp,enum
@@ -53,7 +60,7 @@ javascript:
 
     args:
       Host: "{{Host}}"
-      Port: 80
+      Port: 4222
 
     extractors:
       - type: dsl