nuclei-templates
nuclei-templates copied to clipboard
projectdiscovery
Create nsicg-default-password
fofa:https://fofa.so/result?qbase64=IHRpdGxlPSLnvZHlurfkupLogZTnvZHmjqfliLbnvZHlhbMi
{"agreed":true}
is the response for every login request, we need to update the matches for this.
If you do a POST to the following URL: The response is unique: /user/login/login
I will update the template and attach it here. My only problem is currently to find a host, that has a default password to analyze the correct response. Can I use negative matchers in the templates? Because I know what incorrect logins look like
A failed login request to that endpoint has the following response:
HTTP/1.1 302 Found
Date: Wed, 13 Jul 2022 01:26:05 GMT
Server: Apache
X-Powered-By: PHP/5.3.3
Set-Cookie: PHPSESSID=8j54ielku5gphfqda495sr41k0; path=/
Location: /user/login/index/logined/fail/username/ns25000/loginnum/2
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
For the login the following data has to be sent:
POST /user/login/login HTTP/1.1
Host: <IP:PORT>
Cookie: PHPSESSID=8j54ielku5gphfqda495sr41k0
User-Agent: Mozilla/5.0 (Windows NT 10.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/99.0.7113.93 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/jxl,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 80
Origin: https://<IP:PORT>
Referer: https://<IP:PORT>/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Te: trailers
Connection: close
usrname=ns25000&pass=ns25000&signinfo=&ukey_user_flag=0&SlotSerialNumber=&agree=
Hello @pikpikcu thank you so much for sharing this template with the community and contributing to this project 🍻, Thanks to @dr0pd34d for sharing the additional information, it really helped in validation.
I have updated the template with the appropriate request and matchers.
