mirror of
https://github.com/projectdiscovery/nuclei-templates.git
synced 2026-01-31 15:53:33 +08:00
31 lines
1015 B
YAML
31 lines
1015 B
YAML
id: guest-user-enabled
|
|
|
|
info:
|
|
name: macOS Guest User Enabled
|
|
author: geeknik
|
|
severity: medium
|
|
description: |
|
|
Identifies if the guest user account is enabled on macOS, allowing anyone to use the computer without authentication.
|
|
impact: |
|
|
Enabling the guest user account can allow unauthorized users to access the system with limited, but potentially risky, privileges.
|
|
remediation: |
|
|
Disable the guest user account to reduce the risk of unauthorized access.
|
|
tags: macos,audit,local,security
|
|
|
|
self-contained: true
|
|
|
|
code:
|
|
- engine:
|
|
- sh
|
|
- bash
|
|
source: |
|
|
defaults read /Library/Preferences/com.apple.loginwindow GuestEnabled 2>&1
|
|
matchers-condition: and
|
|
matchers:
|
|
- type: status
|
|
status:
|
|
- 0
|
|
- type: regex
|
|
regex:
|
|
- "^1$"
|
|
# digest: 4a0a00473045022100b56ce36c9516138969ae1baa1b6472abc91525849b6ebf9b1fcfed3a5921a45c0220475f29d019df5ace5aca8e06548449de2807ecdf682073423a0e4c7f4763db8d:922c64590222798bb761d5b6d8e72950 |