Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

SQL Monitor - Discovery

By kannthu

Informative
Vidoc logoVidoc Module
#panel
Description

What is "SQL Monitor - Discovery?"

The "SQL Monitor - Discovery" module is designed to detect the presence of SQL Monitor software. SQL Monitor is a tool used for monitoring and managing SQL Server performance. This module focuses on identifying instances of SQL Monitor and providing information about its presence.

This module has an informative severity level, which means it provides valuable insights without indicating any immediate vulnerabilities or misconfigurations.

Impact

The "SQL Monitor - Discovery" module does not have a direct impact on the target system. It is a passive module that only detects the presence of SQL Monitor software. However, the information gathered by this module can be used to assess the security posture of the target system and identify potential risks or vulnerabilities associated with SQL Monitor.

How the module works?

The "SQL Monitor - Discovery" module works by sending an HTTP GET request to the "/Account/LogIn?returnUrl=%2F&hasAttemptedCookie=True" path. It then applies two matching conditions to determine if SQL Monitor is present:

    - The module checks if the response body contains the following text: "<p>JavaScript needs to be enabled for SQL Monitor to work properly.</p>". This indicates that SQL Monitor requires JavaScript to function correctly. - The module verifies that the response status code is 200, indicating a successful request.

If both conditions are met, the module reports the presence of SQL Monitor.

For more information about the "SQL Monitor - Discovery" module, please refer to the official documentation.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/Account/LogIn?retur...
Matching conditions
word: <p>JavaScript needs to be enabled for SQ...and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability