Added Sage X3 Syracuse fingerprints

[cblack-r7]

Description

The Sage X3 web application server (Syracuse) can be identified by a cookie in the format of "syracuse.sid.", making it a pretty simple signature.

Motivation and Context

The Sage X3 web interface uses a predictable cookie to identify it. This is a heavily deployed ERP product. Some product info:

• https://www.sage.com/en-us/
• https://en.wikipedia.org/wiki/Sage_X3

How Has This Been Tested?

Match test:

~/src/recog $ printf 'syracuse.sid.8124=8b102bf7-327c-4962-9279-550e72afcaa9; path=/; HttpOnly\n' | ./bin/recog_match xml/http_cookies.xml -
MATCH: {"matched"=>"Sage X3 Syracuse Web Server", "cookie"=>nil, "service.vendor"=>"Sage", "service.family"=>"Sage X3 Syracuse Web Server", "service.product"=>"Sage X3 Syracuse Web Server", "service.protocol"=>"http", "fingerprint_db"=>"http_header.cookie", "data"=>"syracuse.sid.8124=8b102bf7-327c-4962-9279-550e72afcaa9; path=/; HttpOnly"}

Happy to run more tests or spin up my test instance again if requested.

Types of changes

• New cookie signature for Sage X3

Checklist:

• [ ] I have updated the documentation accordingly (or changes are not required).
• [x] I have added tests to cover my changes (or new tests are not required).
• [x] All new and existing tests passed.

[tsellers-r7]

@cblack-r7 - Landed, sorry for the delays