vulcan-checks icon indicating copy to clipboard operation
vulcan-checks copied to clipboard

Published 20 hours ago verified publisher icon adevinta

vulcan-exposed-db check consolidation using Nuclei

Open danfaizer opened this issue 8 months ago • 0 comments

The goal of this PR is deprecate vulcan-exposed-db check in favour of vulcan-nuclei check by providing custom Nuclei templates. In fact, vulcan-tenable check already report most of the database service exposures but it requires a 3rd party to run and we've decided to provide an open source replacement for the vulcan-exposed-db check instead.

Check changes:

  • Update check base docker image.
  • Add impact attribute to the Nuclei result struct and assign the value to the ImpactDetail Vulcan report.
  • Fix a typo when logging excluded template list.
  • Add custom Nuclei template validation and test "detect" tag templates.

Templates added:

  • Exposed MySQL
  • Exposed PostgreSQL
  • Exposed MS SQL Server
  • Exposed Redis
  • Exposed Elasticsearch
  • Exposed MongoDB
  • Exposed Cassandra
  • Exposed OracleDB

danfaizer avatar Oct 18 '23 14:10 danfaizer