Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

CompleteView Panel - Detect

By kannthu

Informative
Vidoc logoVidoc Module
#panel#completeview
Description

What is the "CompleteView Panel - Detect" module?

The "CompleteView Panel - Detect" module is a test case designed to detect the presence of the CompleteView panel. CompleteView is a software used for video surveillance and security management. This module focuses on identifying any misconfigurations or vulnerabilities related to the CompleteView panel.

This module has an informative severity level, which means it provides valuable information but does not pose an immediate threat.

Impact

The impact of this module is to identify potential security risks or misconfigurations in the CompleteView panel. By detecting these issues, users can take appropriate actions to mitigate any vulnerabilities and ensure the security of their video surveillance and security management system.

How the module works?

The "CompleteView Panel - Detect" module works by sending an HTTP GET request to the "/en-US/login?return=/live-view" path. It then applies matching conditions to determine if the CompleteView Web Client is present in the response body and if the HTTP status code is 200 (OK).

By analyzing the response, this module can identify if the CompleteView panel is accessible and functioning properly. It helps in detecting any misconfigurations or vulnerabilities that may exist in the panel.

Example HTTP request:

GET /en-US/login?return=/live-view

The matching conditions used in this module are:

- The response body must contain the phrase "CompleteView Web Client". - The HTTP status code must be 200 (OK).

If both conditions are met, the module will report a successful detection of the CompleteView panel.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/en-US/login?return=...
Matching conditions
word: CompleteView Web Clientand
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability