Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The "Nginx Version Detect" module is designed to detect the version of Nginx servers. It is a test case that can be used to identify specific CVEs on target servers. This module is informative in nature and provides valuable information about the Nginx server version.
Author: philippedelteil, daffainfo
Severity: Informative
This module does not have any direct impact on the target server. It is used solely for the purpose of gathering information about the Nginx server version. However, the information obtained can be used to identify potential vulnerabilities or misconfigurations that may exist in the server.
The "Nginx Version Detect" module works by sending HTTP requests to the target server and analyzing the response headers. It uses matching conditions to identify the presence of the Nginx server version in the response header. The module uses regular expressions to match the version number in the "nginx/[0-9.]+" format.
Example HTTP request:
GET / HTTP/1.1
Host: example.com
Matching conditions:
- Part: Header - Type: Regex - Regex: nginx/[0-9.]+ - Negative: False - Condition: AND - Part: All - Type: Status - Status: 200 - Negative: False - Condition: ANDThe module requires a maximum of 1 request to be sent to the target server.