Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The "Watcher Panel - Detect" module is a test case designed to detect misconfigurations, vulnerabilities, or software fingerprints in the targeted software. It focuses on the Watcher Panel, a specific component of the software. The severity of the findings from this module is classified as informative, providing valuable insights without posing an immediate threat. The original author of this module is DhiyaneshDK.
This module aims to identify potential security weaknesses or misconfigurations in the Watcher Panel. By detecting these issues, it helps users understand the potential risks associated with their software and take appropriate actions to mitigate them.
The "Watcher Panel - Detect" module utilizes HTTP request templates and matching conditions to perform its analysis. It sends a GET request to the "/vsaas/v2/login" path and applies two matching conditions:
- The response body must contain the HTML title tag "<title>Watcher</title>
".
- The response status code must be 200 (OK).
If both conditions are met, the module considers the Watcher Panel to be present and functioning correctly. This information can be used to assess the security posture of the software.
For example, the module's HTTP request may look like this:
GET /vsaas/v2/login
By analyzing the response and matching conditions, the module determines whether the Watcher Panel is accessible and properly configured.