Detect Haproxy Exporter

By kannthu

Low

Vidoc Module

#haproxy#exposure#debug

Description

What is the "Detect Haproxy Exporter?" module?

The "Detect Haproxy Exporter" module is designed to detect the presence of the Haproxy Exporter software and identify any potential misconfigurations or vulnerabilities. Haproxy Exporter is a tool used for monitoring and exposing metrics from Haproxy load balancers. This module focuses on identifying any issues related to the Haproxy Exporter software.

This module has a severity level of low, indicating that any potential issues found may have a minimal impact on the system.

Impact

The impact of this module is dependent on the specific misconfigurations or vulnerabilities detected. If any issues are found, they could potentially lead to security risks or performance issues in the Haproxy Exporter software.

How the module works?

The "Detect Haproxy Exporter" module works by sending an HTTP GET request to the target system's "/metrics" endpoint. It then applies a series of matching conditions to determine if the Haproxy Exporter software is present and if any potential issues exist.

The matching conditions used in this module are as follows:

- The response body must contain the word "HELP haproxy_" - The response body must contain either the words "haproxy_exporter" or "haproxy_backend" - The HTTP response status code must be 200

If all of these conditions are met, the module will report a potential misconfiguration or vulnerability related to the Haproxy Exporter software.

Module preview

Concurrent Requests (1)

1. HTTP Request template

GET/metrics

Matching conditions

word: HELP haproxy_and

word: haproxy_exporter, haproxy_backendand

status: 200

Passive global matcher

No matching conditions.

On match action

Report vulnerability