Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

ZOHO ManageEngine ADAudit/ADManager Panel - Detect

By kannthu

Informative
Vidoc logoVidoc Module
#panel#zoho#manageengine
Description

What is the "ZOHO ManageEngine ADAudit/ADManager Panel - Detect" module?

The "ZOHO ManageEngine ADAudit/ADManager Panel - Detect" module is designed to detect the presence of the ZOHO ManageEngine ADAudit/ADManager panel. This panel is a software solution used for managing and auditing Active Directory environments. The module focuses on detecting the panel's presence, which can help identify potential misconfigurations or vulnerabilities in the system.

This module has an informative severity level, meaning it provides valuable information without posing an immediate threat to the system.

Impact

As a detection module, the "ZOHO ManageEngine ADAudit/ADManager Panel - Detect" module does not directly impact the system. Its purpose is to identify the presence of the ZOHO ManageEngine ADAudit/ADManager panel, allowing users to assess the configuration and security of their Active Directory environment.

How the module works?

The module works by sending an HTTP GET request to the "/authorization.do" path. It then applies two matching conditions to determine if the ZOHO ManageEngine ADAudit/ADManager panel is present:

    - The first matcher checks if the response contains the words "ManageEngine - ADManager Plus" or "ADAudit Plus". If either of these words is found, it indicates the presence of the panel. - The second matcher verifies that the response status is 200, indicating a successful request. This condition further confirms the presence of the panel.

By combining these matching conditions, the module can accurately detect the ZOHO ManageEngine ADAudit/ADManager panel.

For example, the module's HTTP request template:

GET /authorization.do

Matching conditions:

- Matcher 1: Check if the response contains the words "ManageEngine - ADManager Plus" or "ADAudit Plus". - Matcher 2: Verify that the response status is 200.

When the module successfully detects the ZOHO ManageEngine ADAudit/ADManager panel, it can provide valuable insights for further analysis and security improvements.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/authorization.do
Matching conditions
word: ManageEngine - ADManager Plus, ADAudit P...and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability