Adds interesting endpoints that reveal sensitive information in Spring applications

2025-12-27 18:09:01 +00:00 · 2017-06-07 03:38:33 +00:00
parent 9f8b8863c5
commit be40d55552
1 changed files with 84 additions and 0 deletions
--- a/nselib/data/http-fingerprints.lua
+++ b/nselib/data/http-fingerprints.lua
@@ -4681,6 +4681,90 @@ table.insert(fingerprints, {
 ------------------------------------------------
 ----        MANAGEMENT SOFTWARE             ----
 ------------------------------------------------
+table.insert(fingerprints, {
+    category = 'management',
+    probes = {
+      {
+        path = '/actuator/',
+        method = 'HEAD'
+      },
+      {
+        path = '/auditevents/',
+        method = 'HEAD'
+      },
+      {
+        path = '/autoconfig/',
+        method = 'HEAD'
+      },
+      {
+        path = '/beans/',
+        method = 'HEAD'
+      },
+      {
+        path = '/configprops/',
+        method = 'HEAD'
+      },
+      {
+        path = '/env/',
+        method = 'HEAD'
+      },
+      {
+        path = '/flyway/',
+        method = 'HEAD'
+      },
+      {
+        path = '/health/',
+        method = 'HEAD'
+      },
+      {
+        path = '/loggers/',
+        method = 'HEAD'
+      },
+      {
+        path = '/liquibase/',
+        method = 'HEAD'
+      },
+      {
+        path = '/metrics/',
+        method = 'HEAD'
+      },
+      {
+        path = '/mappings/',
+        method = 'HEAD'
+      },
+      {
+        path = '/trace/',
+        method = 'HEAD'
+      }
+    },
+    matches = {
+      {
+        output = 'Spring Boot Actuator endpoint'
+      }
+    }
+  });
+
+table.insert(fingerprints, {
+    category = 'management',
+    probes = {
+      {
+        path = '/heapdump/',
+        method = 'GET'
+      },
+      {
+        path = '/jolokia/',
+        method = 'GET'
+      }
+    },
+    matches = {
+      {
+        output = 'Spring MVC Endpoint'
+      }
+    }
+  });
+
+
+
 table.insert(fingerprints, {
    category = 'management',
    probes = {