Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Discover production log files

By kannthu

Informative
Vidoc logoVidoc Module
#exposure#logs#rails
Description

Discover production log files

What is "Discover production log files?"

The "Discover production log files" module is designed to detect misconfigurations in the production log files of a software application. It specifically targets applications built with Rails framework. The severity of this module is classified as informative, meaning it provides valuable information but does not pose a direct vulnerability. The original author of this module is geeknik.

Impact

This module does not have a direct impact on the security of the application. However, it can help identify potential issues or misconfigurations in the production log files, which can be useful for troubleshooting and optimizing the application.

How does the module work?

The "Discover production log files" module works by sending HTTP requests to specific paths associated with the production log files. It then applies matching conditions to determine if the log files contain certain patterns or meet specific criteria.

For example, one of the matching conditions checks if the log files contain the phrases "Connecting to database specified by database.yml" and "Started GET". Additionally, it verifies that the HTTP response status is 200 and that the response header does not contain the word "text/html".

By analyzing the responses and matching conditions, the module can identify if the production log files are accessible, contain expected content, and are properly configured.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/log/production.log/logs/production.log/production.log
Matching conditions
word: Connecting to database specified by data...and
status: 200and
NOT word: text/html
Passive global matcher
No matching conditions.
On match action
Report vulnerability