MyStrom Panel - Detect

What is the "MyStrom Panel - Detect" module?

The "MyStrom Panel - Detect" module is a test case designed to detect the presence of the MyStrom panel software. It targets the MyStrom panel and aims to identify any misconfigurations, vulnerabilities, or software fingerprints associated with it. The module was authored by fabaff and has an informative severity level.

Impact

The impact of the MyStrom panel detection module is primarily to provide information about the presence of the MyStrom panel software. It does not directly indicate any specific vulnerabilities or misconfigurations, but rather serves as a starting point for further analysis and assessment of the MyStrom panel's security posture.

How does the module work?

The module utilizes HTTP request templates and matching conditions to identify the MyStrom panel. It sends a GET request to the "/index.html#en" path and applies two matching conditions:

- The response body must contain the HTML tag "<title>myStrom</title>" - The response status code must be 200 (OK)

If both conditions are met, the module considers the MyStrom panel to be detected.

Here is an example of the HTTP request sent by the module:

GET /index.html#en

The module then evaluates the response to determine if it matches the specified conditions.