Open er4z0r opened 11 months ago
We talked this through on Slack and it seems there is a problem with .info file parsing. As @t94j0 pointed out, you can still get this to work using a pathList.yml
root@satellite-ja3-testing:~# cat /var/www/html/pathList.yml
- path: /index.html
hosted_file: index.html
- path: /useragent
hosted_file: useragent
authorized_useragents:
- "Mozilla.*"
Start satellite again:
root@satellite-ja3-testing:~# satellite
DEBU[0000] Using config file /etc/satellite/config.yml
DEBU[0000] Using server path /var/www/html
DEBU[0000] Loaded 2 path(s)
WARN[0000] Use not_found handlers for opsec
INFO[0000] Listening HTTPS on port :443
Now the useragent example works correctly:
user@pentest:~/projects/internal$ curl -k https://XX.XX.XX.XX/useragent
404
user@pentest:~/projects/internal$ curl -k -A 'Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:67.0) Gecko/20100101 Firefox/67.0' https://XX.XX.XX.XX/useragent
Correct User-Agent!
Steps to reproduce
Manually start satellite:
Not the line that says Loaded 0 path(s)
As a result index.html will always be served irrespective of the User-Agent: