Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Exposed Prometheus

By kannthu

Low
Vidoc logoVidoc Module
#prometheus
Description

What is "Exposed Prometheus?"

"Exposed Prometheus" is a module designed to detect misconfigurations in Prometheus, an open-source monitoring and alerting toolkit. This module focuses on identifying potential vulnerabilities in the Prometheus software. It is a low severity module that helps users ensure the security of their Prometheus installations.

Impact

This module helps identify misconfigurations in Prometheus that could potentially expose sensitive information or lead to unauthorized access. By detecting these vulnerabilities, users can take appropriate measures to secure their Prometheus instances and prevent potential security breaches.

How the module works?

The "Exposed Prometheus" module works by sending HTTP requests to specific paths in the Prometheus server. It checks for the presence of certain metrics, such as "gateway_request_total" and "logback_events_total," which indicate potential misconfigurations. Additionally, it verifies that the server responds with a status code of 200, ensuring that the Prometheus instance is functioning correctly.

By analyzing the responses and matching conditions, the module determines whether the Prometheus server is exposed to vulnerabilities or misconfigurations. It provides valuable insights to users, enabling them to address any identified issues and enhance the security of their Prometheus deployments.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/prometheus/actuator/prometheus
Matching conditions
word: gateway_request_total, logback_events_to...and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability