Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

Wallix Access Manager Panel - Detect

By kannthu

Informative
Vidoc logoVidoc Module
#panel#wallix
Description

What is the "Wallix Access Manager Panel - Detect" module?

The "Wallix Access Manager Panel - Detect" module is designed to detect the presence of the Wallix Access Manager panel. Wallix Access Manager is a privileged access management solution that helps organizations secure their critical assets and manage user access effectively. This module focuses on identifying the panel and providing information about its existence.

This module has an informative severity level, which means it provides valuable insights but does not indicate a specific vulnerability or misconfiguration.

This module was authored by righettod.

Impact

The impact of detecting the Wallix Access Manager panel is primarily informational. It signifies the presence of the panel, but it does not indicate any immediate security risks or vulnerabilities.

How does the module work?

The "Wallix Access Manager Panel - Detect" module utilizes HTTP request templates and matching conditions to identify the presence of the Wallix Access Manager panel.

One example of an HTTP request used by this module is:

GET /wabam/wabam/favicon.ico

The module applies the following matching conditions:

- The response status code must be 200. - The response body must contain the string "<title>wallix access manager</title>". - The response body must be hashed using the mmh3 algorithm, and the resulting hash must be equal to 1745235488.

If any of these conditions are met, the module considers the Wallix Access Manager panel to be detected.

For more information about Wallix Access Manager, you can visit their official website: https://www.wallix.com/privileged-access-management/access-manager/

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/wabam/wabam/favicon.ico
Matching conditions
dsl: status_code==200, contains(toLower(body)...or
dsl: status_code==200, (`1745235488` == mmh3(...
Passive global matcher
No matching conditions.
On match action
Report vulnerability