Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The "Linkerd Service detection" module is designed to detect misconfigurations or vulnerabilities in Linkerd services. Linkerd is a service mesh for cloud-native applications that provides observability, reliability, and security features. This module has an informative severity level and was authored by dudez.
This module helps identify potential issues with Linkerd services, which could impact the reliability and security of the applications running on the service mesh. By detecting misconfigurations or vulnerabilities, it allows for proactive remediation to ensure the smooth operation of the Linkerd infrastructure.
The "Linkerd Service detection" module utilizes HTTP request templates and matching conditions to identify specific patterns or behaviors indicative of misconfigurations or vulnerabilities in Linkerd services.
One example of an HTTP request used by this module is a GET request with specific headers, including the "l5d-dtab" header. The module then applies matching conditions to the response, checking for patterns such as "l5d-err" or "l5d-success-class: 0" in the headers, and "Via: linkerd" in the response body.
If any of the defined matching conditions are met, the module reports a potential misconfiguration or vulnerability in the Linkerd service.
It's important to note that this module is just one test case within the Vidoc platform, which utilizes multiple modules to perform comprehensive scanning and analysis.
Reference - https://twitter.com/nirvana_msu/status/1084144955034165248 Metadata - max-request: 1l5d-dtab: /svc/* => /$/inet/in...