Ethical Hacking Automation

Automate Recon and scanning process with Vidoc. All security teams in one place

ZOHO ManageEngine Applications Manager Panel - Detected

By kannthu

Informative
Vidoc logoVidoc Module
#panel#zoho#manageengine
Description

What is the "ZOHO ManageEngine Applications Manager Panel - Detected?"

The "ZOHO ManageEngine Applications Manager Panel - Detected" module is designed to detect the presence of the ZOHO ManageEngine panel. ZOHO ManageEngine Applications Manager is a comprehensive application performance monitoring solution that helps organizations monitor the performance and availability of their IT infrastructure and applications.

This module focuses on detecting the panel, which can provide valuable information about the presence of the ZOHO ManageEngine Applications Manager software.

The severity of this module is classified as informative, indicating that it provides valuable information but does not pose an immediate security risk.

This module was authored by dhiyaneshDK.

Impact

The impact of detecting the ZOHO ManageEngine Applications Manager panel is primarily informational. It indicates that the ZOHO ManageEngine Applications Manager software is present, which can be useful for organizations that utilize this software for monitoring their IT infrastructure and applications.

How the module works?

The module works by sending an HTTP GET request to the "/index.do" path of the target website. It then applies two matching conditions to determine if the ZOHO ManageEngine Applications Manager panel is present:

    - The module checks if the response body contains the HTML title tag "<title>Applications Manager Login Screen</title>". This indicates that the panel is present. - The module also checks if the response status code is 200, indicating a successful request. This further confirms the presence of the panel.

If both matching conditions are met, the module reports the detection of the ZOHO ManageEngine Applications Manager panel.

It's important to note that this module does not perform any actions beyond detecting the presence of the panel. It does not exploit any vulnerabilities or misconfigurations.

Module preview

Concurrent Requests (1)
1. HTTP Request template
GET/index.do
Matching conditions
word: <title>Applications Manager Login Screen...and
status: 200
Passive global matcher
No matching conditions.
On match action
Report vulnerability