Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Detect Dell iDRAC6

By kannthu

Informative
Vidoc logoVidoc Module
#tech#dell
Description

Detect Dell iDRAC6

What is "Detect Dell iDRAC6?"

The "Detect Dell iDRAC6" module is designed to detect the presence of the Integrated Dell Remote Access Controller (iDRAC) on Dell EMC PowerEdge servers. The iDRAC is a secure local and remote server management tool that helps IT administrators deploy, update, and monitor Dell servers. This module focuses on identifying misconfigurations or vulnerabilities related to the iDRAC6 version.

Severity: Informative

Author: kophjager007

Impact

This module does not have any direct impact on the target system. It is purely informational and aims to provide insights into the presence and configuration of the Dell iDRAC6.

How does the module work?

The "Detect Dell iDRAC6" module utilizes HTTP request templates and matching conditions to identify the presence of the iDRAC6 version on the target system. It sends a GET request to the "/data?get=prodServerGen" endpoint and applies the following matching conditions:

- Status: The response status code must be 200. - Body: The response body must contain the word "11G".

If both conditions are met, the module considers the iDRAC6 version to be detected.

Example HTTP request:

GET /data?get=prodServerGen

Note: The actual HTTP request may contain additional headers or parameters, but those are not specified in the module definition.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/data?get=prodServer...
Matching conditions
status: 200and
word: 11G
Passive global matcher
No matching conditions.
On match action
Report vulnerability