Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Airflow Debug Trace

By kannthu

Low
Vidoc logoVidoc Module
#apache#airflow#fpd
Description

What is the "Airflow Debug Trace?"

The "Airflow Debug Trace" module is designed to detect misconfigurations in Apache Airflow, a platform used for programmatically authoring, scheduling, and monitoring workflows. This module focuses on identifying potential vulnerabilities in the system.

Severity: Low

Author: pdteam

Impact

This module helps identify potential security risks in Apache Airflow, allowing users to address and mitigate them before they can be exploited. By detecting misconfigurations and vulnerabilities, it helps ensure the integrity and security of the Airflow system.

How the module works?

The "Airflow Debug Trace" module works by sending HTTP requests to specific endpoints in the Airflow system and analyzing the responses. It checks for two matching conditions:

    -

    Matching Condition 1: It looks for specific words in the response body, such as "<h1> Ooops. </h1>" and "Traceback (most recent call last)". If these words are found, it indicates a potential misconfiguration or error in the system.

    -

    Matching Condition 2: It checks the HTTP status code of the response. If the status code is 500, it suggests a server error, which could be an indication of a vulnerability.

By analyzing the responses based on these matching conditions, the module can identify potential misconfigurations and vulnerabilities in the Airflow system.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/admin/airflow/login
Matching conditions
word: <h1> Ooops. </h1>, Traceback (most recen...and
status: 500
Passive global matcher
No matching conditions.
On match action
Report vulnerability