vulcan-exposed-db check consolidation using Nuclei #486

danfaizer · 2023-10-18T14:18:48Z

The goal of this PR is deprecate vulcan-exposed-db check in favour of vulcan-nuclei check by providing custom Nuclei templates.
In fact, vulcan-tenable check already report most of the database service exposures but it requires a 3rd party to run and we've decided to provide an open source replacement for the vulcan-exposed-db check instead.

Check changes:

Update check base docker image.
Add impact attribute to the Nuclei result struct and assign the value to the ImpactDetail Vulcan report.
Fix a typo when logging excluded template list.
Add custom Nuclei template validation and test "detect" tag templates.

Templates added:

Exposed MySQL
Exposed PostgreSQL
Exposed MS SQL Server
Exposed Redis
Exposed Elasticsearch
Exposed MongoDB
Exposed Cassandra
Exposed OracleDB

danfaizer added 12 commits October 13, 2023 08:27

Update nuclei base docker image

a004f8b

Incorporate Nuclei's impact into the vulnerability report

77fe6b0

Fix typo when logging excluded template list

5ee1b6c

Add exposed-db MySQL detection

d76da72

Add exposed-db PostgreSQL detection

ecfa1ad

Add exposed-db MS SQL Server detection

3361064

Add exposed-db Redis detection

8eb17b5

Add exposed-db Elasticsearch detection

891737c

Add exposed-db MongoDB detection

a8fb68b

Add exposed-db Cassandra detection

dba6c01

Add exposed-db OracleDB detection

cba3a41

Add template validation in vulcan-nuclei tests

1d78f41

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

vulcan-exposed-db check consolidation using Nuclei #486

vulcan-exposed-db check consolidation using Nuclei #486

danfaizer commented Oct 18, 2023 •

edited

vulcan-exposed-db check consolidation using Nuclei #486

Are you sure you want to change the base?

vulcan-exposed-db check consolidation using Nuclei #486

Conversation

danfaizer commented Oct 18, 2023 • edited

danfaizer commented Oct 18, 2023 •

edited