ZeroShell Panel - Detect

What is the "ZeroShell Panel - Detect" module?

The "ZeroShell Panel - Detect" module is designed to detect the presence of the ZeroShell panel. ZeroShell is a software solution that provides network services such as firewalling, routing, and VPN capabilities. This module focuses on identifying the ZeroShell panel and is used to perform scanning for misconfigurations, vulnerabilities, or software fingerprinting.

This module has an informative severity level, which means it provides valuable information but does not indicate a critical security issue.

This module was authored by dhiyaneshDK.

Impact

The impact of detecting the ZeroShell panel is primarily informational. It helps users and administrators identify the presence of ZeroShell and gain insights into the network infrastructure.

How does the module work?

The "ZeroShell Panel - Detect" module utilizes HTTP request templates and matching conditions to identify the ZeroShell panel. It performs the following steps:

- Sends an HTTP request to the target. - Checks if the response contains the HTML title tag with the value "ZeroShell". - Verifies that the HTTP response status is 200 (OK).

If both conditions are met, the module reports the detection of the ZeroShell panel.

Here is an example of an HTTP request sent by the module:

GET / HTTP/1.1
Host: [target]
User-Agent: Vidoc

The matching conditions for this module are:

- The HTML response must contain the title tag with the value "ZeroShell". - The HTTP response status must be 200 (OK).

By analyzing these conditions, the module determines whether the ZeroShell panel is present on the target system.