Skip to content

vulnersCom/detect-rules

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

36 Commits
 
 
 
 
 
 

Repository files navigation

Vulners signature-base software version detection rules

Description

Vulners rules are used in Vulners Burp Plugin for the software:version pairs detection. Using this regular expressions and aliases plugin calls Vulners Burp API to find vulnerabilities.

Rule structure

The rule structure is:

"jQuery": {
        "regex": "jQuery v([\\d.]+)",
        "alias": "jquery",
        "type": "software"
    },

"jQuery"

Is the human-readable alias.

"regex"

Regular expression with single match group to find version of the product. It will be used on the raw plain-text server HTTP reply.

"alias"

CPE string or software name alias. CPE is the preffered method.

"type"

"cpe" or "software". When "cpe" is selected, alias must me a CPE string like in this example:

"mod_perl": {
        "regex": "mod_perl/([\\d.]+)",
        "alias": "cpe:/a:apache:mod_perl",
        "type": "cpe"
    },

Contributors

Vulners Team [email protected]

About

Vulners signature-base software version detection rules

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published