mirror of
https://github.com/projectdiscovery/nuclei-templates.git
synced 2026-02-09 04:03:16 +08:00
27 lines
899 B
YAML
27 lines
899 B
YAML
id: filevault-disabled
|
|
|
|
info:
|
|
name: macOS FileVault Disabled
|
|
author: geeknik
|
|
severity: high
|
|
description: |
|
|
Identifies if FileVault full-disk encryption is disabled on macOS, leaving data unprotected from unauthorized access.
|
|
impact: |
|
|
Disabling FileVault leaves the data on the disk unencrypted and vulnerable to theft or unauthorized access if the device is lost or stolen.
|
|
remediation: |
|
|
Enable FileVault to encrypt the entire disk and protect the data at rest.
|
|
tags: macos,audit,local,security
|
|
|
|
self-contained: true
|
|
|
|
code:
|
|
- engine:
|
|
- sh
|
|
- bash
|
|
source: |
|
|
fdesetup status
|
|
matchers:
|
|
- type: word
|
|
words:
|
|
- "FileVault is Off."
|
|
# digest: 4b0a00483046022100dbeda953db252023089741b1ebc7bfe9469e933be51e45c78375eb388a18e01d022100b08c18ef3cbd1adefb1455ae1b792c1647dba4be6856925de6508a35c4066c05:922c64590222798bb761d5b6d8e72950 |