Pulsar360 Admin Panel - Detect

What is the "Pulsar360 Admin Panel - Detect" module?

The "Pulsar360 Admin Panel - Detect" module is designed to detect the presence of the Pulsar360 admin panel. This module focuses on identifying misconfigurations or vulnerabilities within the admin panel. The severity of the findings is classified as informative, meaning it provides valuable information but does not pose an immediate threat. The original author of this module is tess.

Impact

By detecting the Pulsar360 admin panel, this module helps identify potential security risks or weaknesses in the configuration of the panel. It provides insights into any misconfigurations that may exist, allowing administrators to take appropriate actions to secure the panel and prevent potential unauthorized access or data breaches.

How does the module work?

The "Pulsar360 Admin Panel - Detect" module works by sending an HTTP GET request to the "/admin/config.php" path. It then applies matching conditions to determine if the admin panel is present. The matching conditions include checking the response body for specific keywords such as "Pulsar Admin" and "User Control Panel," as well as verifying that the response status is 200 (OK).

Here is an example of the HTTP request:

GET /admin/config.php

The matching conditions are:

- The response body must contain the keywords "Pulsar Admin" and "User Control Panel". - The response status must be 200 (OK).

If these conditions are met, the module will report the detection of the Pulsar360 admin panel.