Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

HiveQueue Agent

By kannthu

Low
Vidoc logoVidoc Module
#misconfig#hivequeue
Description

HiveQueue Agent

What is the HiveQueue Agent?

The HiveQueue Agent module is designed to detect misconfigurations in the HiveQueue software. It targets the HiveQueue monitoring page and checks for specific conditions to identify potential vulnerabilities. The severity of this module is classified as low.

This module was authored by DhiyaneshDk.

Impact

The HiveQueue Agent module helps identify misconfigurations in the HiveQueue software, which can potentially lead to security vulnerabilities. By detecting these issues, users can take appropriate measures to secure their systems and prevent unauthorized access or data breaches.

How does the module work?

The HiveQueue Agent module works by sending an HTTP GET request to the "/monitoring" path of the target system. It then applies a series of matching conditions to determine if the HiveQueue Agent software is properly configured.

Matching conditions:

- The response body must contain the HTML title tag "<title>HiveQueue Agent</title>". - The response header must include the word "text/html". - The HTTP status code must be 200 (OK).

If all of these conditions are met, the module will report a potential misconfiguration in the HiveQueue Agent software.

Reference:

- https://www.facebook.com/ExWareLabs/photos/a.361854183878462/5555061814557647/

Metadata:

max-request: 1

verified: true

shodan-query: http.title:"HiveQueue"

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/monitoring
Matching conditions
word: <title>HiveQueue Agent</title>and
word: text/htmland
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability