Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Apache License File

By kannthu

Low
Vidoc logoVidoc Module
#exposure#file#apache
Description

Apache License File Module

What is the Apache License File?

The Apache License File module is a test case used in the Vidoc platform to detect misconfigurations related to the Apache license file. It targets websites or applications that use the Apache license and checks if the license file is properly configured.

This module has a severity level of low, indicating that the misconfiguration detected by this module may have minimal impact on the security of the website or application.

Impact

The misconfiguration detected by this module may expose sensitive information present in the Apache license file. This information can include details about the license, copyright owner, and other related information.

How the module works?

The Apache License File module works by sending an HTTP GET request to the /.licenserc.yaml path of the target website or application. It then applies matching conditions to determine if the license file is properly configured.

The matching conditions used by this module are:

- The response body must contain the words header:, license:, and copyright-owner:. - The HTTP response status code must be 200.

If both matching conditions are met, the module reports a misconfiguration related to the Apache license file.

For more information about the Apache License, please visit the Apache License website.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/.licenserc.yaml
Matching conditions
word: header:, license:, copyright-owner:and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability