OpenVPN Admin Login Panel - Detect

What is the "OpenVPN Admin Login Panel - Detect?" module?

The "OpenVPN Admin Login Panel - Detect" module is designed to detect the presence of the OpenVPN Admin login panel. OpenVPN Admin is a web-based administration panel for managing OpenVPN servers. This module focuses on identifying the login panel and does not perform any further actions.

This module has an informative severity level, which means it provides valuable information but does not indicate a vulnerability or misconfiguration.

This module was authored by ritikchaddha.

Impact

The impact of detecting the OpenVPN Admin login panel is limited to the identification of the panel itself. It does not indicate any specific vulnerabilities or misconfigurations.

How does the module work?

The module works by sending HTTP requests to specific paths ("/login" and "/index.php") and applying matching conditions to the responses. The following matching conditions are used:

- The response body must contain either "<title>OpenVPN-Admin" or "<title>OpenVPN Admin" - The response status code must be 200

If both matching conditions are met, the module considers the OpenVPN Admin login panel to be detected.

Here is an example of an HTTP request sent by the module:

GET /login HTTP/1.1
Host: [target_host]

The module sends similar requests to both "/login" and "/index.php" paths.