Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Alibaba Canal Config - Detect

By kannthu

Informative
Vidoc logoVidoc Module
#config#exposure#alibaba
Description

What is the "Alibaba Canal Config - Detect" module?

The "Alibaba Canal Config - Detect" module is designed to detect misconfigurations in Alibaba Canal, a software used for data synchronization and database change tracking. This module focuses on identifying potential security vulnerabilities in the configuration settings of Alibaba Canal.

This module has an informative severity level, meaning it provides valuable information about potential security risks without actively exploiting them.

Author: pikpikcu

Impact

If misconfigurations are detected in the Alibaba Canal configuration, it could lead to unauthorized access or exposure of sensitive data. Attackers may exploit these vulnerabilities to gain unauthorized access to the system or manipulate the data being synchronized.

How does the module work?

The "Alibaba Canal Config - Detect" module works by sending an HTTP GET request to the "/api/v1/canal/config/1/1" endpoint. It then applies a series of matching conditions to determine if misconfigurations are present.

The matching conditions include:

- Status: The response status code must be 200. - Content-Type: The response header must include the "application/json" value. - Body: The response body must contain the words "ncanal.aliyun.accessKey" and "ncanal.aliyun.secretKey".

If all the matching conditions are met, the module will report the detection of Alibaba Canal configuration information.

Example HTTP request:

GET /api/v1/canal/config/1/1
Content-Type: application/json

Reference:

- https://github.com/alibaba/canal/issues/632 - https://netty.io/wiki/reference-counted-objects.html

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/api/v1/canal/config...
Headers

Content-Type: application/json

Matching conditions
status: 200and
word: application/jsonand
word: ncanal.aliyun.accessKey, ncanal.aliyun.s...
Passive global matcher
No matching conditions.
On match action
Report vulnerability