Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Hospital Management System Login Panel - Detect

By kannthu

Vidoc logoVidoc Module

What is the "Hospital Management System Login Panel - Detect?"

The "Hospital Management System Login Panel - Detect" module is designed to detect the presence of a login panel in a Hospital Management System (HMS) software. It targets the login panels used by doctors and administrators to access the system. This module is classified as informative, meaning it provides information about the presence of the login panel but does not indicate any specific vulnerabilities or misconfigurations.

This module was authored by arafatansari.


The impact of detecting the Hospital Management System login panel is primarily informational. It indicates that the login functionality is present in the system, allowing authorized users to access the HMS software.

How the module works?

The module works by sending an HTTP GET request to the "/index.html" path of the target system. It then applies two matching conditions to determine if the login panel is present:

    - The module checks the response body for specific keywords, including "Hospital Management System," "Doctors Login," and "Admin Login." If any of these keywords are found, it indicates the presence of the login panel. - The module also verifies that the HTTP response status is 200, indicating a successful request. This condition ensures that the target system is accessible and responsive.

By combining these matching conditions, the module can accurately detect the Hospital Management System login panel.

Example HTTP request:

GET /index.html

Matching conditions:

- Response body contains the keywords: "Hospital Management System," "Doctors Login," and "Admin Login." - HTTP response status is 200.

Module preview

Concurrent Requests (1)
1. HTTP Request template
Matching conditions
word: Hospital Management System, Doctors Logi...and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability