Created
November 29, 2022 21:12
-
-
Save tarunKoyalwar/f76fc7b55c29e69b1ea1d02f4d6661a8 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
{ | |
"version": "2.1.0", | |
"$schema": "https://raw.githubusercontent.com/oasis-tcs/sarif-spec/master/Schemata/sarif-schema-2.1.0.json", | |
"runs": [ | |
{ | |
"tool": { | |
"driver": { | |
"name": "Nuclei", | |
"organization": "ProjectDiscovery", | |
"product": "Nuclei", | |
"shortDescription": { | |
"text": "Fast and Customizable Vulnerability Scanner" | |
}, | |
"fullDescription": { | |
"text": "Fast and customizable vulnerability scanner based on simple YAML based DSL" | |
}, | |
"fullName": "Nuclei v2.7.9", | |
"semanticVersion": "v2.7.9", | |
"downloadUri": "https://github.com/projectdiscovery/nuclei/releases", | |
"rules": [ | |
{ | |
"id": "tech-detect", | |
"name": "Wappalyzer Technology Detection", | |
"fullDescription": { | |
"text": "More details at\nhttps://github.com/projectdiscovery/nuclei-templates/blob/master/technologies/tech-detect.yaml\n" | |
}, | |
"properties": { | |
"security-severity": "1", | |
"tags": [ | |
"security" | |
] | |
} | |
}, | |
{ | |
"id": "robots-txt-endpoint", | |
"name": "robots.txt endpoint prober", | |
"fullDescription": { | |
"text": "More details at\nhttps://github.com/projectdiscovery/nuclei-templates/blob/master/miscellaneous/robots-txt-endpoint.yaml\n" | |
}, | |
"properties": { | |
"security-severity": "1", | |
"tags": [ | |
"security" | |
] | |
} | |
}, | |
{ | |
"id": "exposed-gitignore", | |
"name": "Exposed Gitignore", | |
"fullDescription": { | |
"text": "More details at\nhttps://github.com/projectdiscovery/nuclei-templates/blob/master/exposures/configs/exposed-gitignore.yaml\n" | |
}, | |
"properties": { | |
"security-severity": "1", | |
"tags": [ | |
"security" | |
] | |
} | |
}, | |
{ | |
"id": "readme-md", | |
"name": "README.md file disclosure", | |
"shortDescription": { | |
"text": "Internal documentation file often used in projects which can contain sensitive information." | |
}, | |
"fullDescription": { | |
"text": "More details at\nhttps://github.com/projectdiscovery/nuclei-templates/blob/master/exposures/files/readme-md.yaml\n" | |
}, | |
"properties": { | |
"security-severity": "1", | |
"tags": [ | |
"security" | |
] | |
} | |
}, | |
{ | |
"id": "waf-detect", | |
"name": "WAF Detection", | |
"shortDescription": { | |
"text": "A web application firewall was detected." | |
}, | |
"fullDescription": { | |
"text": "More details at\nhttps://github.com/projectdiscovery/nuclei-templates/blob/master/technologies/waf-detect.yaml\n" | |
}, | |
"properties": { | |
"security-severity": "1", | |
"tags": [ | |
"security" | |
] | |
} | |
} | |
] | |
} | |
}, | |
"results": [ | |
{ | |
"ruleId": "tech-detect", | |
"ruleIndex": -1, | |
"rule": { | |
"id": "tech-detect", | |
"toolComponent": {} | |
}, | |
"level": "none", | |
"kind": "open", | |
"message": { | |
"text": "[Nuclei:info] Wappalyzer Technology Detection" | |
}, | |
"analysisTarget": {}, | |
"webRequest": { | |
"body": {} | |
}, | |
"webResponse": { | |
"body": {} | |
}, | |
"locations": [ | |
{ | |
"message": { | |
"text": "http:/192.168.29.188:80" | |
}, | |
"physicalLocation": { | |
"address": {}, | |
"artifactLocation": { | |
"uri": "/", | |
"description": { | |
"text": "http:/192.168.29.188:80" | |
} | |
} | |
} | |
} | |
] | |
}, | |
{ | |
"ruleId": "tech-detect", | |
"ruleIndex": -1, | |
"rule": { | |
"id": "tech-detect", | |
"toolComponent": {} | |
}, | |
"level": "none", | |
"kind": "open", | |
"message": { | |
"text": "[Nuclei:info] Wappalyzer Technology Detection" | |
}, | |
"analysisTarget": {}, | |
"webRequest": { | |
"body": {} | |
}, | |
"webResponse": { | |
"body": {} | |
}, | |
"locations": [ | |
{ | |
"message": { | |
"text": "http:/localhost:80" | |
}, | |
"physicalLocation": { | |
"address": {}, | |
"artifactLocation": { | |
"uri": "/", | |
"description": { | |
"text": "http:/localhost:80" | |
} | |
} | |
} | |
} | |
] | |
}, | |
{ | |
"ruleId": "robots-txt-endpoint", | |
"rule": { | |
"id": "robots-txt-endpoint", | |
"toolComponent": {} | |
}, | |
"level": "none", | |
"kind": "open", | |
"message": { | |
"text": "[Nuclei:info] robots.txt endpoint prober" | |
}, | |
"analysisTarget": {}, | |
"webRequest": { | |
"body": {} | |
}, | |
"webResponse": { | |
"body": {} | |
}, | |
"locations": [ | |
{ | |
"message": { | |
"text": "http:/localhost:80" | |
}, | |
"physicalLocation": { | |
"address": {}, | |
"artifactLocation": { | |
"uri": "/", | |
"description": { | |
"text": "http:/localhost:80" | |
} | |
} | |
} | |
} | |
] | |
}, | |
{ | |
"ruleId": "robots-txt-endpoint", | |
"rule": { | |
"id": "robots-txt-endpoint", | |
"toolComponent": {} | |
}, | |
"level": "none", | |
"kind": "open", | |
"message": { | |
"text": "[Nuclei:info] robots.txt endpoint prober" | |
}, | |
"analysisTarget": {}, | |
"webRequest": { | |
"body": {} | |
}, | |
"webResponse": { | |
"body": {} | |
}, | |
"locations": [ | |
{ | |
"message": { | |
"text": "http:/192.168.29.188:80" | |
}, | |
"physicalLocation": { | |
"address": {}, | |
"artifactLocation": { | |
"uri": "/", | |
"description": { | |
"text": "http:/192.168.29.188:80" | |
} | |
} | |
} | |
} | |
] | |
}, | |
{ | |
"ruleId": "exposed-gitignore", | |
"ruleIndex": 1, | |
"rule": { | |
"id": "exposed-gitignore", | |
"toolComponent": {} | |
}, | |
"level": "none", | |
"kind": "open", | |
"message": { | |
"text": "[Nuclei:info] Exposed Gitignore" | |
}, | |
"analysisTarget": {}, | |
"webRequest": { | |
"body": {} | |
}, | |
"webResponse": { | |
"body": {} | |
}, | |
"locations": [ | |
{ | |
"message": { | |
"text": "http:/localhost:80" | |
}, | |
"physicalLocation": { | |
"address": {}, | |
"artifactLocation": { | |
"uri": "/", | |
"description": { | |
"text": "http:/localhost:80" | |
} | |
} | |
} | |
} | |
] | |
}, | |
{ | |
"ruleId": "exposed-gitignore", | |
"ruleIndex": 1, | |
"rule": { | |
"id": "exposed-gitignore", | |
"toolComponent": {} | |
}, | |
"level": "none", | |
"kind": "open", | |
"message": { | |
"text": "[Nuclei:info] Exposed Gitignore" | |
}, | |
"analysisTarget": {}, | |
"webRequest": { | |
"body": {} | |
}, | |
"webResponse": { | |
"body": {} | |
}, | |
"locations": [ | |
{ | |
"message": { | |
"text": "http:/192.168.29.188:80" | |
}, | |
"physicalLocation": { | |
"address": {}, | |
"artifactLocation": { | |
"uri": "/", | |
"description": { | |
"text": "http:/192.168.29.188:80" | |
} | |
} | |
} | |
} | |
] | |
}, | |
{ | |
"ruleId": "readme-md", | |
"ruleIndex": 2, | |
"rule": { | |
"id": "readme-md", | |
"toolComponent": {} | |
}, | |
"level": "none", | |
"kind": "open", | |
"message": { | |
"text": "[Nuclei:info] README.md file disclosure" | |
}, | |
"analysisTarget": {}, | |
"webRequest": { | |
"body": {} | |
}, | |
"webResponse": { | |
"body": {} | |
}, | |
"locations": [ | |
{ | |
"message": { | |
"text": "http:/192.168.29.188:80" | |
}, | |
"physicalLocation": { | |
"address": {}, | |
"artifactLocation": { | |
"uri": "/", | |
"description": { | |
"text": "http:/192.168.29.188:80" | |
} | |
} | |
} | |
} | |
] | |
}, | |
{ | |
"ruleId": "readme-md", | |
"ruleIndex": 2, | |
"rule": { | |
"id": "readme-md", | |
"toolComponent": {} | |
}, | |
"level": "none", | |
"kind": "open", | |
"message": { | |
"text": "[Nuclei:info] README.md file disclosure" | |
}, | |
"analysisTarget": {}, | |
"webRequest": { | |
"body": {} | |
}, | |
"webResponse": { | |
"body": {} | |
}, | |
"locations": [ | |
{ | |
"message": { | |
"text": "http:/localhost:80" | |
}, | |
"physicalLocation": { | |
"address": {}, | |
"artifactLocation": { | |
"uri": "/", | |
"description": { | |
"text": "http:/localhost:80" | |
} | |
} | |
} | |
} | |
] | |
}, | |
{ | |
"ruleId": "waf-detect", | |
"ruleIndex": 3, | |
"rule": { | |
"id": "waf-detect", | |
"toolComponent": {} | |
}, | |
"level": "none", | |
"kind": "open", | |
"message": { | |
"text": "[Nuclei:info] WAF Detection" | |
}, | |
"analysisTarget": {}, | |
"webRequest": { | |
"body": {} | |
}, | |
"webResponse": { | |
"body": {} | |
}, | |
"locations": [ | |
{ | |
"message": { | |
"text": "http:/localhost:80" | |
}, | |
"physicalLocation": { | |
"address": {}, | |
"artifactLocation": { | |
"uri": "/", | |
"description": { | |
"text": "http:/localhost:80" | |
} | |
} | |
} | |
} | |
] | |
}, | |
{ | |
"ruleId": "waf-detect", | |
"ruleIndex": 3, | |
"rule": { | |
"id": "waf-detect", | |
"toolComponent": {} | |
}, | |
"level": "none", | |
"kind": "open", | |
"message": { | |
"text": "[Nuclei:info] WAF Detection" | |
}, | |
"analysisTarget": {}, | |
"webRequest": { | |
"body": {} | |
}, | |
"webResponse": { | |
"body": {} | |
}, | |
"locations": [ | |
{ | |
"message": { | |
"text": "http:/192.168.29.188:80" | |
}, | |
"physicalLocation": { | |
"address": {}, | |
"artifactLocation": { | |
"uri": "/", | |
"description": { | |
"text": "http:/192.168.29.188:80" | |
} | |
} | |
} | |
} | |
] | |
} | |
], | |
"invocations": [ | |
{ | |
"commandLine": "/var/folders/fs/50l_djns0db4w30ttbd6czgr0000gn/T/go-build3368883278/b001/exe/nuclei", | |
"arguments": [ | |
"-l", | |
"urls.txt", | |
"-s", | |
"info", | |
"-se", | |
"reported3.sarif" | |
], | |
"responseFiles": [ | |
{ | |
"uri": "file:///reported3.sarif", | |
"description": { | |
"text": "Nuclei Sarif Report" | |
} | |
} | |
], | |
"executionSuccessful": false, | |
"executableLocation": {}, | |
"workingDirectory": {}, | |
"stdin": {}, | |
"stdout": {}, | |
"stderr": {} | |
} | |
] | |
} | |
] | |
} |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment