Zipkin Discovery

What is the "Zipkin Discovery" module?

The "Zipkin Discovery" module is a test case designed to detect misconfigurations in the Zipkin software. Zipkin is an open-source distributed tracing system that helps developers gather timing data for requests made across various microservices. This module focuses on identifying unauthenticated access to Zipkin, which can pose a significant security risk.

This module has a severity level of high, indicating the potential impact of the discovered vulnerability.

Author: dhiyaneshDk

Impact

If unauthenticated access to Zipkin is allowed, it can expose sensitive information and potentially compromise the security of the system. Attackers may gain unauthorized access to tracing data, leading to potential data breaches or unauthorized actions within the system.

How does the module work?

The "Zipkin Discovery" module performs a series of HTTP requests and matches the responses against specific conditions to determine if unauthenticated access is possible. One example of an HTTP request made by this module is:

GET /config.json

The module checks if the response meets the following conditions:

- The HTTP status code is 200. - The response header contains the word "application/json". - The response body contains the words "environment" and "defaultLookback".

If all the conditions are met, the module reports a vulnerability, indicating that unauthenticated access to Zipkin has been discovered.

For more information about Zipkin, you can visit their official website: https://zipkin.io/

Metadata: max-request: 1