id: detect-sentry

info:
  name: Detect Sentry Instance
  author: Sicksec
  severity: info
  reference:
    - https://hackerone.com/reports/374737
    - https://twitter.com/itsecurityguard/status/1127893545619218432?lang=en
  metadata:
    max-request: 1
  tags: ssrf,sentry,tech,hackerone

http:
  - method: GET
    path:
      - "{{BaseURL}}"

    extractors:
      - type: regex
        part: body
        regex:
          - "https://[0-9a-f]*@[a-z0-9]+\\.[a-z.]+.?[0-9]+"
# digest: 4a0a004730450220248c2fd518515a2dce9cbe16a3583cc95282464c4aeab7b8a8c441055c7a15cb022100ce8b3ada89605f92fab8fbd1f3233f3bbf012c0960f71e51f1c76c3b367f3cfc:922c64590222798bb761d5b6d8e72950