Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The "Apache Detection" module is a test case designed to detect the presence of Apache servers and gather information about their version. It focuses on identifying misconfigurations, vulnerabilities, or fingerprinting the Apache software.
This module is authored by philippedelteil and has an informative severity level.
The impact of this module is to provide insights into the Apache server's version and potential vulnerabilities or misconfigurations. By identifying the Apache version, it helps in assessing the security posture and determining if any updates or patches are required.
The "Apache Detection" module utilizes HTTP request templates and matching conditions to identify Apache servers. It performs the following checks:
- Checks the response header for the presence of the term "Apache+". - Verifies if the HTTP status code is 200.If both conditions are met, the module considers the server as an Apache server.
Here is an example of an HTTP request that the module may send:
GET / HTTP/1.1
Host: example.com
The module then analyzes the response header and status code to determine if the server is running Apache.
Metadata:
max-request: 1
For more information, refer to the Vidoc platform documentation.