SentinelOne Management Console Login Panel - Detect

What is the "SentinelOne Management Console Login Panel - Detect?"

The "SentinelOne Management Console Login Panel - Detect" module is designed to detect the presence of the SentinelOne Management Console login panel. SentinelOne is a software platform that provides endpoint protection and threat intelligence. This module focuses on identifying the login panel specifically.

This module has an informative severity level, meaning it provides valuable information but does not indicate a vulnerability or misconfiguration.

Author: DhiyaneshDK

Impact

This module does not have a direct impact on the system being scanned. It simply detects the presence of the SentinelOne Management Console login panel, providing information about its existence.

How does the module work?

The module works by sending an HTTP GET request to the "/login" path of the target website. It then applies two matching conditions to determine if the SentinelOne Management Console login panel is present:

- The response body must contain the phrase "SentinelOne - Management Console". - The response status code must be 200 (OK).

If both conditions are met, the module considers the login panel to be detected.

Example HTTP request:

GET /login

Matching conditions:

- Response body must contain the phrase "SentinelOne - Management Console". - Response status code must be 200.

Note: The module definition in JSON format is not shown here for simplicity.