Dradis Professional Edition Login Panel - Detect

What is the "Dradis Professional Edition Login Panel - Detect?"

The "Dradis Professional Edition Login Panel - Detect" module is designed to detect the presence of the Dradis Professional Edition login panel. Dradis Professional Edition is a software used for collaborative information sharing and reporting in the field of information security. This module focuses on identifying the login panel specifically.

The severity of this module is classified as informative, meaning it provides valuable information but does not indicate a vulnerability or misconfiguration.

This module was authored by righettod.

Impact

This module does not have a direct impact on the target system. It simply detects the presence of the Dradis Professional Edition login panel, providing information about its existence.

How does the module work?

The module works by sending an HTTP GET request to the "/pro/login" path of the target system. It then applies two matching conditions to determine if the Dradis Professional Edition login panel is present:

- The module checks the response body for the presence of the phrase "Dradis Professional Edition". - The module verifies that the HTTP response status code is 200 (OK).

If both conditions are met, the module reports the detection of the Dradis Professional Edition login panel.

Example HTTP request:

GET /pro/login

Matching conditions:

- Response body must contain the phrase "Dradis Professional Edition". - HTTP response status code must be 200 (OK).