Landray Login Panel - Detect

What is the "Landray Login Panel - Detect?"

The "Landray Login Panel - Detect" module is designed to detect the presence of the Landray login panel. Landray is a software that provides a login panel for users to access certain functionalities or resources. This module focuses on identifying the login panel and does not perform any actions beyond detection. The severity of this module is classified as informative, meaning it provides valuable information but does not pose an immediate threat or vulnerability. The original author of this module is YanYun.

Impact

This module does not have any direct impact as it only detects the presence of the Landray login panel. However, the detection of the login panel can be used as a starting point for further analysis or security assessments.

How does the module work?

The "Landray Login Panel - Detect" module works by sending an HTTP GET request to the "/login.jsp" path. It then applies a series of matching conditions to determine if the login panel is present. The matching conditions include:

- Checking the HTTP response status code to ensure it is 200 (OK). - Searching for specific keywords in the response body, such as "lui_login_input_username" and "lui_login_input_password". - Inspecting the response headers for the presence of the word "isopen=".

If all of these matching conditions are met, the module considers the Landray login panel to be detected.

Example HTTP request:

GET /login.jsp

Note: The above example is a simplified representation of the HTTP request and does not include headers or other parameters.