Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The "Detect Dell iDRAC8" module is designed to detect the presence of the Integrated Dell Remote Access Controller (iDRAC) on Dell EMC PowerEdge servers. The iDRAC is a secure local and remote server management tool that helps IT administrators deploy, update, and monitor Dell servers. This module focuses on identifying misconfigurations or vulnerabilities related to the iDRAC8 software.
Severity: Informative
Author: kophjager007
This module does not have a direct impact on the target system. It is used to identify potential misconfigurations or vulnerabilities in the iDRAC8 software, which could have an impact on the overall security and management of the Dell EMC PowerEdge servers.
The "Detect Dell iDRAC8" module utilizes HTTP request templates and matching conditions to identify the presence of iDRAC8 on the target system. It sends a GET request to the "/data?get=prodServerGen" endpoint and applies the following matching conditions:
- Status: The response status code must be 200. - Body: The response body must contain the word "13G".If both matching conditions are met, the module considers the iDRAC8 software to be present on the target system.
Example HTTP request:
GET /data?get=prodServerGen
Note: The actual HTTP request may include additional headers or parameters, but those are not specified in the module definition.