Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Detect Dell iDRAC8

By kannthu

Informative
Vidoc logoVidoc Module
#tech#dell
Description

What is "Detect Dell iDRAC8?"

The "Detect Dell iDRAC8" module is designed to detect the presence of the Integrated Dell Remote Access Controller (iDRAC) on Dell EMC PowerEdge servers. The iDRAC is a secure local and remote server management tool that helps IT administrators deploy, update, and monitor Dell servers. This module focuses on identifying misconfigurations or vulnerabilities related to the iDRAC8 software.

Severity: Informative

Author: kophjager007

Impact

This module does not have a direct impact on the target system. It is used to identify potential misconfigurations or vulnerabilities in the iDRAC8 software, which could have an impact on the overall security and management of the Dell EMC PowerEdge servers.

How the module works?

The "Detect Dell iDRAC8" module utilizes HTTP request templates and matching conditions to identify the presence of iDRAC8 on the target system. It sends a GET request to the "/data?get=prodServerGen" endpoint and applies the following matching conditions:

- Status: The response status code must be 200. - Body: The response body must contain the word "13G".

If both matching conditions are met, the module considers the iDRAC8 software to be present on the target system.

Example HTTP request:

GET /data?get=prodServerGen

Note: The actual HTTP request may include additional headers or parameters, but those are not specified in the module definition.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/data?get=prodServer...
Matching conditions
status: 200and
word: 13G
Passive global matcher
No matching conditions.
On match action
Report vulnerability