Module for retrieving default login credentials for web apps and attempting auth

[AnthonyPraetorian]

Feature Description • R&D into a tool that leverages LLM/Search for retrieving default login credentials for target web apps and attempt login

Problem

• Lots of apps are left in deployment with default or common login credentials.
• The volume of applications to test against is laborious, and often full coverage is not obtained, leaving material risk exposure.

Preferred Solution

• Fingerprint the target web app / service
• Retrieve vendor defaults from external resource and internal database
• Determine the login form/steps
• Attempt login and determine success
• Consider lockout prevention - EG, if the app suggests LDAP authentication, abort login

[AnthonyPraetorian]

Please involve @ztgrace [https://github.com/ztgrace/changeme] during the design discussions

[michaelweber]

Right now we run all the default credential checks baked into Nuclei (see https://github.com/projectdiscovery/nuclei-templates/tree/main/http/default-logins for a complete list) - if there's any other applications we think need default credential checks I'd suggest that we add them into the Nuclei repository as we already get that for free / that will help us fan-out the creation of default password checks to all of services which will be necessary since this is essentially a forever task that we'll want to keep updating.

[Dan-Crawford]

Hey, @AnthonyPraetorian, since nuclei has the above capability for default logins and a call has gone out to folks to create additional nuclei templates for creds they find that are not represented in the above, I'm going to close this out. If that's not working out, we can re-engage.

[AnthonyPraetorian]

@Dan-Crawford @michaelweber

This does not address the feature request.

The main feature is for a plugin to dynamically and intelligently derive the vendor defaults and attempt auth,

It is not a request to build a portfolio of known defaults.

Please re-open and re-engage as needed