Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Server Backup Manager SE Panel - Detect

By kannthu

Informative
Vidoc logoVidoc Module
#panel#server#backup#manager
Description

What is the "Server Backup Manager SE Panel - Detect?"

The "Server Backup Manager SE Panel - Detect" module is designed to detect the presence of the Server Backup Manager SE login panel. This module is part of the Vidoc platform, which uses various modules to perform scanning and testing. The Server Backup Manager SE is a software that provides backup management for servers.

This module has an informative severity level, meaning it provides valuable information but does not pose an immediate threat.

Author: dhiyaneshDK

Impact

The impact of detecting the Server Backup Manager SE login panel is primarily informational. It indicates that the login panel for the Server Backup Manager SE software has been found, but it does not identify any specific vulnerabilities or misconfigurations.

How does the module work?

The module works by sending an HTTP GET request to the "/login.zul" path of the target server. It then applies two matching conditions to determine if the Server Backup Manager SE login panel is present:

- The module checks the response body using a regular expression to match the title tag containing the text "Server Backup Manager SE". - It also verifies that the HTTP response status is 200 (OK).

If both conditions are met, the module reports the detection of the Server Backup Manager SE login panel.

Example HTTP request:

GET /login.zul

Matching conditions:

- Response body contains the title tag with the text "Server Backup Manager SE"
- HTTP response status is 200 (OK)

Metadata:

- Maximum number of requests: 1
- Shodan query: http.title:"Server Backup Manager SE"

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/login.zul
Matching conditions
regex: <title>.*(Server Backup Manager SE).*</t...and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability