Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

SolarWinds Orion Login Panel - Detect

By kannthu

Informative
Vidoc logoVidoc Module
#panel#solarwinds
Description

What is the "SolarWinds Orion Login Panel - Detect?" module?

The "SolarWinds Orion Login Panel - Detect" module is designed to detect the presence of the SolarWinds Orion login panel. SolarWinds Orion is a software platform used for network and systems management. This module focuses on identifying the login panel specifically.

The severity of this module is classified as informative, meaning it provides valuable information but does not indicate a vulnerability or misconfiguration.

This module was authored by puzzlepeaches.

Impact

The impact of detecting the SolarWinds Orion login panel is primarily informational. It does not indicate any immediate security risks or vulnerabilities. Instead, it provides insight into the presence of the login panel, which can be useful for further analysis and assessment of the SolarWinds Orion environment.

How does the module work?

The "SolarWinds Orion Login Panel - Detect" module operates by sending a GET request to the "/Orion/Login.aspx" path. It then examines the response body for the presence of the phrase "SolarWinds Orion" using a word matching condition.

Here is an example of the HTTP request sent by the module:

GET /Orion/Login.aspx

The module matches the response body against the word "SolarWinds Orion" to determine if the login panel is present. If the match is found, the module reports the detection.

The matching conditions for this module are:

- Part: Body - Type: Word - Words: "SolarWinds Orion" - Negative: False - Condition: AND

The module uses a single matching condition, which requires all conditions to be met for a successful match.

The maximum number of requests performed by this module is 1.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/Orion/Login.aspx
Matching conditions
word: SolarWinds Orion
Passive global matcher
No matching conditions.
On match action
Report vulnerability