修改指纹-[spring-framework]

[j4vaovo]

测试目标

http://aipromoter.com:8080/

指纹的Yaml规则

name: spring-framework
priority: 2
nuclei_tags:
  - - springboot
  - - springframework
  - - spring
    - vmware
  - - spring
fingerprint:
  - path: /
    request_method: get
    request_headers: {}
    request_data: ''
    status_code: 0
    headers: {}
    keyword:
      - whitelabel error page
    favicon_hash: []
  - path: /
    request_method: get
    request_headers: {}
    request_data: ''
    status_code: 0
    headers: {}
    keyword:
      - '","status":404,"error":"Not Found","message":"No message available","path":"/'
    favicon_hash: []
  - path: /
    request_method: get
    request_headers: {}
    request_data: ''
    status_code: 0
    headers:
      Www-Authenticate: Basic realm="Spring"
    keyword: []
    favicon_hash: []
  - path: /
    request_method: get
    request_headers: {}
    request_data: ''
    status_code: 0
    headers:
      X-Application-Context:
    keyword: []
    favicon_hash: []
  - path: /
    request_method: get
    request_headers: {}
    request_data: ''
    status_code: 0
    headers: {}
    keyword: []
    favicon_hash:
      - 0488faca4c19046b94d07c3ee83cf9d66

[github-actions[bot]]

验证过程:

点击展开查看

```bash URL: http://aipromoter.com:8080/ HEADERS: server: Apache-Coyote/1.1 set-cookie: JSESSIONID=082645352B2E328D54360927E6370426; Path=/; HttpOnly location: http://aipromoter.com:8080/login/auth content-length: 0 date: Sun, 04 Jun 2023 12:37:51 GMT STATUS_CODE: 302 TEXT: NEXT_URL: http://aipromoter.com:8080/login/auth URL: http://aipromoter.com:8080/login/auth HEADERS: server: Apache-Coyote/1.1 x-application-context: application:production content-type: text/html;charset=utf-8 content-language: en-US transfer-encoding: chunked date: Sun, 04 Jun 2023 12:37:51 GMT STATUS_CODE: 200 TEXT:

{{'login.title' | translate}}

{{'login.username' | translate}}

{{'login.password' | translate}}

{{'login.submit' | translate}}

FAVICON: { "http://aipromoter.com:8080/assets/favicon-e92fe58a70d80b658df93fd58b855c97.ico": "e92fe58a70d80b658df93fd58b855c97", } Matching fingerprintV3WebFingerPrint { name: "spring-framework", priority: 2, request: WebFingerPrintRequest { path: "/", request_method: "get", request_headers: {}, request_data: "", }, match_rules: WebFingerPrintMatch { status_code: 0, favicon_hash: [], headers: { "X-Application-Context": "", }, keyword: [], }, } ```

验证结果：

• 是否识别成功： true

[github-actions[bot]]

审核通过:

• 指纹规则已经合并，感谢提交。