Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The "Postgres Exporter Metrics" module is a test case designed to detect misconfigurations, vulnerabilities, or fingerprint software related to Postgres. It targets Postgres databases and provides information about the severity of the identified issues. The module was authored by DhiyaneshDk.
The impact of the "Postgres Exporter Metrics" module depends on the specific misconfiguration, vulnerability, or software fingerprint it detects. It can help identify potential security risks, expose sensitive data, or provide insights into the Postgres database's configuration.
The "Postgres Exporter Metrics" module utilizes HTTP request templates and matching conditions to perform its tests. One example of an HTTP request it sends is a GET request to the "/metrics" path. The module then applies matching conditions to the response to determine if the target system meets the specified criteria.
The matching conditions for this module include:
- Checking if the response body contains the words "postgres" and "# HELP". - Verifying that the response status is 200 (OK).If both conditions are met, the module considers the test successful and reports the identified issues or software fingerprint.