Named Process Exporter

By kannthu

Low

Vidoc Module

#namedprocess#exposure#debug

Description

What is the "Named Process Exporter?"

The "Named Process Exporter" module is designed to detect misconfigurations, vulnerabilities, or specific software related to the Named Process Exporter. It targets systems that have the Named Process Exporter installed and running. The severity of this module is classified as low.

This module was authored by DhiyaneshDk.

Impact

This module helps identify potential security risks or misconfigurations associated with the Named Process Exporter. By detecting vulnerabilities or misconfigurations, it allows users to take appropriate actions to mitigate potential risks and ensure the security of their systems.

How the module works?

The "Named Process Exporter" module works by sending an HTTP GET request to the "/metrics" endpoint. It then applies matching conditions to determine if the response indicates the presence of the Named Process Exporter.

Matching conditions:

- The response body must contain the words "namedprocess" and "# HELP". - The response status code must be 200.

If both conditions are met, the module considers the Named Process Exporter to be present on the target system.

Example HTTP request:

GET /metrics

Note: The above example is a simplified representation of the HTTP request. Actual requests may include additional headers or parameters.

Module preview

Concurrent Requests (1)

1. HTTP Request template

GET/metrics

Matching conditions

word: namedprocess, # HELPand

status: 200

Passive global matcher

No matching conditions.

On match action

Report vulnerability