Harbor Login Panel - Detect

What is the "Harbor Login Panel - Detect?"

The "Harbor Login Panel - Detect" module is designed to detect the presence of the Harbor login panel. Harbor is an open-source cloud-native registry that stores, signs, and scans container images for vulnerabilities. This module focuses on identifying the login panel of the Harbor software.

This module has an informative severity level, meaning it provides valuable information but does not indicate a vulnerability or misconfiguration.

Author: daffainfo

Impact

This module does not have a direct impact as it is an informative detection module. It simply identifies the presence of the Harbor login panel without indicating any vulnerabilities or misconfigurations.

How does the module work?

The "Harbor Login Panel - Detect" module works by sending HTTP requests and matching the responses against predefined conditions. It uses two matching conditions:

- Matcher 1: It checks if the response body contains the HTML title tag with the content "Harbor" and the "" element. This indicates the presence of the Harbor login panel. - Matcher 2: It verifies that the HTTP response status is 200, indicating a successful request.

If both matchers are satisfied, the module reports the detection of the Harbor login panel.

Example HTTP request:

GET / HTTP/1.1
Host: example.com

Note: The above example is a simplified representation of an HTTP request and may not reflect the exact request used by the module.

The module does not perform any further actions or provide additional information about the detected login panel.

Reference: https://github.com/goharbor/harbor

Metadata:

- max-request: 1 - verified: true - shodan-query: http.favicon.hash:657337228