diff --git a/QUERIES.yaml b/QUERIES.yaml index fc76590..1a3aece 100644 --- a/QUERIES.yaml +++ b/QUERIES.yaml @@ -56,13 +56,13 @@ engines: - platform: shodan queries: - - http.title:"ad hoc transfer" - - http.title:"ws_ftp server web transfer" - ws_ftp port:22 + - http.title:"ws_ftp server web transfer" + - http.title:"ad hoc transfer" - platform: fofa queries: - - title="ad hoc transfer" - title="ws_ftp server web transfer" + - title="ad hoc transfer" - platform: google queries: - intitle:"ws_ftp server web transfer" @@ -86,17 +86,17 @@ engines: - platform: fofa queries: - - title="rocketmq-console-ng" - title="rocketmq" - protocol="rocketmq" + - title="rocketmq-console-ng" - platform: shodan queries: - - http.title:"rocketmq-console-ng" - http.title:"rocketmq" + - http.title:"rocketmq-console-ng" - platform: google queries: - - intitle:"rocketmq-console-ng" - intitle:"rocketmq" + - intitle:"rocketmq-console-ng" - name: ios vendor: cisco @@ -105,8 +105,8 @@ - platform: shodan queries: - product:"cisco ios http config" - - cpe:"cpe:2.3:o:cisco:ios" - product:"cisco ios http config" && 200 + - cpe:"cpe:2.3:o:cisco:ios" - name: airflow vendor: apache @@ -120,8 +120,8 @@ - platform: fofa queries: - title="airflow - dags" || http.html:"apache airflow" - - title="sign in - airflow" - apache airflow + - title="sign in - airflow" - platform: google queries: - intitle:"sign in - airflow" @@ -201,9 +201,9 @@ engines: - platform: shodan queries: - - http.component:"atlassian jira" - - http.component:"atlassian confluence" - cpe:"cpe:2.3:a:atlassian:jira" + - http.component:"atlassian confluence" + - http.component:"atlassian jira" - name: arcgis_server vendor: esri @@ -226,8 +226,8 @@ - platform: shodan queries: - http.favicon.hash:81586312 - - cpe:"cpe:2.3:a:jenkins:jenkins" - product:"jenkins" + - cpe:"cpe:2.3:a:jenkins:jenkins" - platform: fofa queries: - icon_hash=81586312 @@ -238,8 +238,8 @@ engines: - platform: shodan queries: - - http.title:"apache tomcat" - http.html:"apache tomcat" + - http.title:"apache tomcat" - cpe:"cpe:2.3:a:apache:tomcat" - platform: fofa queries: @@ -334,14 +334,14 @@ engines: - platform: shodan queries: - - http.favicon.hash:1768726119 + - vuln:cve-2021-26855 - http.title:"outlook" + - http.favicon.hash:1768726119 - cpe:"cpe:2.3:a:microsoft:exchange_server" - - vuln:cve-2021-26855 - platform: fofa queries: - - title="outlook" - icon_hash=1768726119 + - title="outlook" - platform: google queries: - intitle:"outlook" @@ -378,8 +378,8 @@ - http.title:"nagios xi" - platform: fofa queries: - - app="nagios-xi" - title="nagios xi" + - app="nagios-xi" - platform: google queries: - intitle:"nagios xi" @@ -404,8 +404,8 @@ engines: - platform: shodan queries: - - cpe:"cpe:2.3:a:magento:magento" - http.component:"magento" + - cpe:"cpe:2.3:a:magento:magento" - name: printer_firmware vendor: samsung @@ -485,8 +485,8 @@ engines: - platform: shodan queries: - - http.html:"weiphp" - http.html:"weiphp5.0" + - http.html:"weiphp" - platform: fofa queries: - body="weiphp" @@ -523,12 +523,12 @@ engines: - platform: shodan queries: - - product:"rhinosoft serv-u httpd" - http.html:"serv-u" + - product:"rhinosoft serv-u httpd" - platform: fofa queries: - - body="serv-u" - server="serv-u" + - body="serv-u" - name: api_manager vendor: wso2 @@ -604,18 +604,18 @@ engines: - platform: shodan queries: + - http.title:"osticket installer" - http.html:"powered by osticket" - http.title:"osticket" - - http.title:"osticket installer" - platform: fofa queries: - - body="powered by osticket" - title="osticket" + - body="powered by osticket" - title="osticket installer" - platform: google queries: - - intitle:"osticket installer" - intitle:"osticket" + - intitle:"osticket installer" - name: big-ip_access_policy_manager vendor: f5 @@ -673,8 +673,8 @@ engines: - platform: shodan queries: - - cpe:"cpe:2.3:a:gnu:mailman" - http.title:"mailing lists" + - cpe:"cpe:2.3:a:gnu:mailman" - platform: fofa queries: - title="mailing lists" @@ -691,8 +691,8 @@ - http.title:"metabase" - platform: fofa queries: - - title="metabase" - app="metabase" + - title="metabase" - platform: google queries: - intitle:"metabase" @@ -772,8 +772,8 @@ engines: - platform: shodan queries: - - http.html:"powered by gitea version" - http.title:"gitea" + - http.html:"powered by gitea version" - cpe:"cpe:2.3:a:gitea:gitea" - platform: fofa queries: @@ -789,8 +789,8 @@ engines: - platform: shodan queries: - - 'http.title:"sign in: /home"' - 'server: labkey' + - 'http.title:"sign in: /home"' - platform: fofa queries: - 'title="sign in: /home"' @@ -838,16 +838,16 @@ - platform: shodan queries: - http.title:"cpanel" - - cpe:"cpe:2.3:a:cpanel:cpanel" - http.title:"cpanel - api codes" + - cpe:"cpe:2.3:a:cpanel:cpanel" - platform: fofa queries: - title="cpanel" - title="cpanel - api codes" - platform: google queries: - - intitle:"cpanel - api codes" - intitle:"cpanel" + - intitle:"cpanel - api codes" - name: cip_92200_firmware vendor: intelbras @@ -855,8 +855,8 @@ engines: - platform: fofa queries: - - title="intelbras" - app="intelbras" + - title="intelbras" - platform: shodan queries: - http.title:"intelbras" @@ -870,13 +870,13 @@ engines: - platform: shodan queries: - - http.component:"phpmyadmin" - http.title:"phpmyadmin" - cpe:"cpe:2.3:a:phpmyadmin:phpmyadmin" + - http.component:"phpmyadmin" - platform: fofa queries: - - title="phpmyadmin" - body="pma_servername" && body="4.8.4" + - title="phpmyadmin" - platform: google queries: - intitle:"phpmyadmin" @@ -934,8 +934,8 @@ - http.html:"welcome.cgi?p=logo" - platform: fofa queries: - - title="ivanti connect secure" - body="welcome.cgi?p=logo" + - title="ivanti connect secure" - platform: google queries: - intitle:"ivanti connect secure" @@ -1034,8 +1034,8 @@ engines: - platform: shodan queries: - - http.title:phppgadmin - cpe:"cpe:2.3:a:phppgadmin_project:phppgadmin" + - http.title:phppgadmin - platform: fofa queries: - title=phppgadmin @@ -1188,12 +1188,12 @@ engines: - platform: shodan queries: - - http.favicon.hash:-633108100 - http.title:"sign in - appwrite" + - http.favicon.hash:-633108100 - platform: fofa queries: - - icon_hash=-633108100 - title="sign in - appwrite" + - icon_hash=-633108100 - platform: google queries: - intitle:"sign in - appwrite" @@ -1215,10 +1215,10 @@ engines: - platform: fofa queries: - - title="qlik-sense" - - icon_hash=-74348711 - - app="qlik-sense" - body="qlik" + - app="qlik-sense" + - icon_hash=-74348711 + - title="qlik-sense" - platform: shodan queries: - http.favicon.hash:-74348711 @@ -1270,12 +1270,12 @@ - title:'metasploit' - platform: fofa queries: - - title="metasploit" - title="metasploit - setup and configuration" + - title="metasploit" - platform: google queries: - - intitle:"metasploit" - intitle:"metasploit - setup and configuration" + - intitle:"metasploit" - name: linkerd vendor: linkerd @@ -1294,8 +1294,8 @@ engines: - platform: shodan queries: - - http.title:"sophos mobile" - http.favicon.hash:-1274798165 + - http.title:"sophos mobile" - platform: fofa queries: - title="sophos mobile" @@ -1353,8 +1353,8 @@ engines: - platform: shodan queries: - - http.title:"squirrelmail" - cpe:"cpe:2.3:a:squirrelmail:squirrelmail" + - http.title:"squirrelmail" - platform: fofa queries: - title="squirrelmail" @@ -1462,14 +1462,14 @@ - intitle:"3cx phone system management console" - platform: shodan queries: - - http.favicon.hash:970132176 - http.title:"3cx webclient" + - http.favicon.hash:970132176 - http.title:"3cx phone system management console" - platform: fofa queries: - - icon_hash=970132176 - - title="3cx phone system management console" - title="3cx webclient" + - title="3cx phone system management console" + - icon_hash=970132176 - name: lansweeper vendor: lansweeper @@ -1491,8 +1491,8 @@ engines: - platform: google queries: - - intitle:"securetransport" || http.favicon.hash:1330269434 - intitle:"st web client" + - intitle:"securetransport" || http.favicon.hash:1330269434 - platform: shodan queries: - http.title:"securetransport" || http.favicon.hash:1330269434 @@ -1512,8 +1512,8 @@ - http.html:"/apps/imt/html/" - platform: fofa queries: - - title="spark master at" - body="/apps/imt/html/" + - title="spark master at" - platform: google queries: - intitle:"spark master at" @@ -1581,8 +1581,8 @@ - http.html:"amcrest" - platform: fofa queries: - - body="amcrest" "ldap user" - body="amcrest" + - body="amcrest" "ldap user" - name: influxdb vendor: influxdata @@ -1590,8 +1590,8 @@ engines: - platform: shodan queries: - - http.title:"influxdb - admin interface" - influxdb + - http.title:"influxdb - admin interface" - platform: fofa queries: - title="influxdb - admin interface" @@ -1605,8 +1605,8 @@ engines: - platform: shodan queries: - - http.title:"openfire" - http.title:"openfire admin console" + - http.title:"openfire" - platform: fofa queries: - title="openfire" @@ -1625,8 +1625,8 @@ - intitle:"sign in - gogs" - platform: shodan queries: - - cpe:"cpe:2.3:a:gogs:gogs" - http.title:"sign in - gogs" + - cpe:"cpe:2.3:a:gogs:gogs" - platform: fofa queries: - title="sign in - gogs" @@ -1708,12 +1708,12 @@ engines: - platform: shodan queries: - - http.title:"hestia control panel" - http.favicon.hash:-476299640 + - http.title:"hestia control panel" - platform: fofa queries: - - icon_hash=-476299640 - title="hestia control panel" + - icon_hash=-476299640 - platform: google queries: - intitle:"hestia control panel" @@ -1770,8 +1770,8 @@ - title="login - pyload" - platform: google queries: - - intitle:"login - pyload" - intitle:"pyload" + - intitle:"login - pyload" - platform: zoomeye queries: - app:"pyload" @@ -1884,13 +1884,13 @@ engines: - platform: shodan queries: - - http.component:"adobe coldfusion" - http.title:"coldfusion administrator login" + - http.component:"adobe coldfusion" - cpe:"cpe:2.3:a:adobe:coldfusion" - platform: fofa queries: - - title="coldfusion administrator login" - app="adobe-coldfusion" + - title="coldfusion administrator login" - platform: google queries: - intitle:"coldfusion administrator login" @@ -1943,13 +1943,13 @@ engines: - platform: shodan queries: - - http.favicon.hash:-1105083093 - http.title:"keycloak" + - http.favicon.hash:-1105083093 - http.html:"keycloak" - platform: fofa queries: - - icon_hash=-1105083093 - body="keycloak" + - icon_hash=-1105083093 - title="keycloak" - platform: google queries: @@ -1990,8 +1990,8 @@ - http.title:"kafka center" - platform: fofa queries: - - title="kafka consumer offset monitor" - title="kafka center" + - title="kafka consumer offset monitor" - platform: google queries: - intitle:"kafka center" @@ -2015,8 +2015,8 @@ - platform: shodan queries: - http.title:"apache solr" - - http.title:"solr admin" - cpe:"cpe:2.3:a:apache:solr" + - http.title:"solr admin" - platform: fofa queries: - title="apache solr" @@ -2074,8 +2074,8 @@ engines: - platform: shodan queries: - - cpe:"cpe:2.3:o:vmware:esxi" - http.html:"esxuiapp" + - cpe:"cpe:2.3:o:vmware:esxi" - platform: fofa queries: - body="esxuiapp" @@ -2086,8 +2086,8 @@ engines: - platform: shodan queries: - - http.title:"odoo" - cpe:"cpe:2.3:a:odoo:odoo" + - http.title:"odoo" - platform: fofa queries: - title="odoo" @@ -2157,12 +2157,12 @@ engines: - platform: shodan queries: - - http.favicon.hash:106844876 - http.title:"revive adserver" + - http.favicon.hash:106844876 - platform: fofa queries: - - title="revive adserver" - icon_hash=106844876 + - title="revive adserver" - platform: google queries: - intitle:"revive adserver" @@ -2209,8 +2209,8 @@ engines: - platform: shodan queries: - - http.html:"contao open source cms" - http.title:"contao" + - http.html:"contao open source cms" - cpe:"cpe:2.3:a:contao:contao" - platform: fofa queries: @@ -2240,9 +2240,9 @@ engines: - platform: fofa queries: - - title="login to cacti" - - title="cacti" - icon_hash="-1797138069" + - title="cacti" + - title="login to cacti" - platform: shodan queries: - http.title:"cacti" @@ -2292,8 +2292,8 @@ - http.title:"jedox web login" - platform: fofa queries: - - title="jedox web - login" - title="jedox web login" + - title="jedox web - login" - name: jaspersoft vendor: tibco @@ -2357,14 +2357,14 @@ engines: - platform: shodan queries: - - http.title:"zabbix-server" - http.favicon.hash:892542951 + - http.title:"zabbix-server" - cpe:"cpe:2.3:a:zabbix:zabbix" - platform: fofa queries: - icon_hash=892542951 - - app="zabbix-监控系统" && body="saml" - title="zabbix-server" + - app="zabbix-监控系统" && body="saml" - platform: google queries: - intitle:"zabbix-server" @@ -2375,8 +2375,8 @@ engines: - platform: shodan queries: - - http.title:"incapptic" - http.favicon.hash:-1067582922 + - http.title:"incapptic" - platform: fofa queries: - icon_hash=-1067582922 @@ -2405,12 +2405,12 @@ engines: - platform: fofa queries: - - icon_hash="151132309" - title="cloudpanel" + - icon_hash="151132309" - platform: shodan queries: - - http.title:"cloudpanel" - http.favicon.hash:"151132309" + - http.title:"cloudpanel" - platform: google queries: - intitle:"cloudpanel" @@ -2435,8 +2435,8 @@ engines: - platform: shodan queries: - - http.favicon.hash:-2023266783 - cpe:"cpe:2.3:a:matomo:matomo" + - http.favicon.hash:-2023266783 - platform: fofa queries: - icon_hash=-2023266783 @@ -2483,12 +2483,12 @@ - intext:"totemomail" inurl:responsiveui - platform: shodan queries: - - http.html:responsiveui - http.html:"totemomail" inurl:responsiveui + - http.html:responsiveui - platform: fofa queries: - - body=responsiveui - body="totemomail" inurl:responsiveui + - body=responsiveui - name: vibe vendor: microfocus @@ -2692,8 +2692,8 @@ engines: - platform: fofa queries: - - app="openemr" - body="openemr" + - app="openemr" - icon_hash=1971268439 - title="openemr" - platform: shodan @@ -2726,8 +2726,8 @@ - platform: shodan queries: - http.html:"router management - server openvpn" - - cpe:"cpe:2.3:a:openvpn:openvpn" - http.title:"openvpn-admin" + - cpe:"cpe:2.3:a:openvpn:openvpn" - platform: fofa queries: - title="openvpn-admin" @@ -2750,8 +2750,8 @@ engines: - platform: shodan queries: - - 'server: netdata embedded http server' - http.title:"netdata dashboard" + - 'server: netdata embedded http server' - platform: fofa queries: - title="netdata dashboard" @@ -3044,8 +3044,8 @@ engines: - platform: shodan queries: - - http.html:"plesk obsidian" - http.title:"plesk obsidian" + - http.html:"plesk obsidian" - platform: fofa queries: - body="plesk obsidian" @@ -3147,8 +3147,8 @@ - platform: shodan queries: - http.component:"joomla" - - http.html:"joomla! - open source content management" - cpe:"cpe:2.3:a:joomla:joomla\!" + - http.html:"joomla! - open source content management" - platform: fofa queries: - body="joomla! - open source content management" @@ -3236,16 +3236,16 @@ engines: - platform: shodan queries: - - http.title:"icinga web 2 login" - http.title:"icinga" + - http.title:"icinga web 2 login" - platform: fofa queries: - - title="icinga web 2 login" - title="icinga" + - title="icinga web 2 login" - platform: google queries: - - intitle:"icinga web 2 login" - intitle:"icinga" + - intitle:"icinga web 2 login" - name: successfactors vendor: sap @@ -3295,16 +3295,16 @@ engines: - platform: shodan queries: - - http.title:"pulsar admin console" - http.title:"pulsar admin ui" + - http.title:"pulsar admin console" - platform: fofa queries: - - title="pulsar admin ui" - title="pulsar admin console" + - title="pulsar admin ui" - platform: google queries: - - intitle:"pulsar admin ui" - intitle:"pulsar admin console" + - intitle:"pulsar admin ui" - name: phabricator vendor: phacility @@ -3337,8 +3337,8 @@ engines: - platform: shodan queries: - - http.favicon.hash:1949005079 - http.html:"modoboa" + - http.favicon.hash:1949005079 - platform: fofa queries: - body="modoboa" @@ -3389,12 +3389,12 @@ engines: - platform: shodan queries: - - http.title:"glpi" - http.favicon.hash:"-1474875778" + - http.title:"glpi" - platform: fofa queries: - - title="glpi" - icon_hash="-1474875778" + - title="glpi" - platform: google queries: - intitle:"glpi" @@ -3405,8 +3405,8 @@ engines: - platform: shodan queries: - - http.title:teamcity - http.component:"teamcity" + - http.title:teamcity - platform: fofa queries: - title=teamcity @@ -3438,8 +3438,8 @@ - http.title:"grafana" - platform: fofa queries: - - app="grafana" - title="grafana" + - app="grafana" - platform: google queries: - intitle:"grafana" @@ -3567,12 +3567,12 @@ engines: - platform: shodan queries: - - http.title:"servicenow" - http.favicon.hash:1701804003 + - http.title:"servicenow" - platform: fofa queries: - - icon_hash=1701804003 - title="servicenow" + - icon_hash=1701804003 - platform: google queries: - intitle:"servicenow" @@ -3594,8 +3594,8 @@ engines: - platform: shodan queries: - - http.title:"oracle commerce" - cpe:"cpe:2.3:a:oracle:commerce" + - http.title:"oracle commerce" - platform: fofa queries: - title="oracle commerce" @@ -3693,8 +3693,8 @@ engines: - platform: shodan queries: - - http.favicon.hash:129457226 - cpe:"cpe:2.3:a:liferay:liferay_portal" + - http.favicon.hash:129457226 - platform: fofa queries: - icon_hash=129457226 @@ -3830,8 +3830,8 @@ engines: - platform: fofa queries: - - body="ektron" - app="ektron-cms" + - body="ektron" - platform: shodan queries: - http.html:"ektron" @@ -3858,13 +3858,13 @@ engines: - platform: shodan queries: + - micro focus dsd - http.title:"setup github enterprise" - http.title:"github enterprise" - - micro focus dsd - platform: fofa queries: - - title="github enterprise" - app="github-enterprise" + - title="github enterprise" - title="setup github enterprise" - platform: google queries: @@ -3989,14 +3989,14 @@ engines: - platform: shodan queries: - - http.title:"minio browser" - - http.title:"minio console" - cpe:"cpe:2.3:a:minio:minio" + - http.title:"minio console" + - http.title:"minio browser" - platform: fofa queries: - - title="minio browser" - - app="minio" - title="minio console" + - app="minio" + - title="minio browser" - platform: google queries: - intitle:"minio browser" @@ -4053,8 +4053,8 @@ - html:'content="papercut' - platform: shodan queries: - - http.html:"content=\"papercut\"" - cpe:"cpe:2.3:a:papercut:papercut_ng" + - http.html:"content=\"papercut\"" - http.html:'content="papercut' - platform: fofa queries: @@ -4118,8 +4118,8 @@ - http.favicon.hash:-379154636 - platform: fofa queries: - - icon_hash=-379154636 - title="kubeview" + - icon_hash=-379154636 - platform: google queries: - intitle:"kubeview" @@ -4183,8 +4183,8 @@ engines: - platform: shodan queries: - - http.title:"h2 console" - cpe:"cpe:2.3:a:h2database:h2" + - http.title:"h2 console" - platform: fofa queries: - title="h2 console" @@ -4240,14 +4240,14 @@ engines: - platform: shodan queries: - - http.html:"solarview compact" - cpe:"cpe:2.3:o:contec:solarview_compact_firmware" + - http.html:"solarview compact" - http.favicon.hash:"-244067125" - platform: fofa queries: - - icon_hash="-244067125" - - body="solarview compact" && title="top" - body="solarview compact" + - body="solarview compact" && title="top" + - icon_hash="-244067125" - name: backup_appliance vendor: exagrid @@ -4300,12 +4300,12 @@ - inurl:login_up.php "plesk onyx" - platform: shodan queries: - - http.html:"plesk onyx" http.html:"plesk-build" - http.html:"plesk-build" + - http.html:"plesk onyx" http.html:"plesk-build" - platform: fofa queries: - - body="plesk-build" - body="plesk onyx" http.html:"plesk-build" + - body="plesk-build" - name: filr vendor: microfocus @@ -4443,8 +4443,8 @@ - http.title:sugarcrm - platform: google queries: - - intext:"sugarcrm inc. all rights reserved" - intitle:sugarcrm + - intext:"sugarcrm inc. all rights reserved" - platform: fofa queries: - title=sugarcrm @@ -4486,12 +4486,12 @@ engines: - platform: shodan queries: - - http.html:"apache superset" - http.favicon.hash:1582430156 + - http.html:"apache superset" - platform: fofa queries: - - body="apache superset" - icon_hash=1582430156 + - body="apache superset" - name: tew-827dru_firmware vendor: trendnet @@ -4525,12 +4525,12 @@ - intitle:"check point ssl network extender" - platform: shodan queries: - - http.title:"ssl network extender login" - http.title:"check point ssl network extender" + - http.title:"ssl network extender login" - platform: fofa queries: - - title="check point ssl network extender" - title="ssl network extender login" + - title="check point ssl network extender" - name: jboss_enterprise_web_platform vendor: redhat @@ -4577,8 +4577,8 @@ - http.title:"manageengine desktop central 10" - platform: fofa queries: - - title="manageengine desktop central 10" - app="zoho-manageengine-desktop" + - title="manageengine desktop central 10" - platform: google queries: - intitle:"manageengine desktop central 10" @@ -4620,8 +4620,8 @@ - http.title:"apex it help desk" - platform: fofa queries: - - title="apex it help desk" - app="zoho-流量管理" + - title="apex it help desk" - platform: google queries: - intitle:"apex it help desk" @@ -4688,8 +4688,8 @@ engines: - platform: shodan queries: - - http.title:"manageengine" - http.title:"adselfservice plus" + - http.title:"manageengine" - platform: fofa queries: - title="manageengine" @@ -4763,12 +4763,12 @@ - platform: shodan queries: - http.title:"photo station" - - 'content-length: 580 "http server 1.0"' - http.title:"qnap" + - 'content-length: 580 "http server 1.0"' - platform: fofa queries: - - title="qnap" - title="photo station" + - title="qnap" - platform: google queries: - intitle:"qnap" @@ -4862,12 +4862,12 @@ - http.title:"h-sphere" - platform: fofa queries: - - title="parallels h-sphere" - title="h-sphere" + - title="parallels h-sphere" - platform: google queries: - - intitle:"parallels h-sphere" - intitle:"h-sphere" + - intitle:"parallels h-sphere" - name: maximo_asset_management vendor: ibm @@ -4909,9 +4909,9 @@ engines: - platform: shodan queries: - - cpe:"cpe:2.3:a:adobe:experience_manager" - http.component:"adobe experience manager" - http.title:"aem sign in" + - cpe:"cpe:2.3:a:adobe:experience_manager" - platform: fofa queries: - title="aem sign in" @@ -4925,16 +4925,16 @@ engines: - platform: shodan queries: - - http.title:"adobe connect" - http.title:"openvpn connect" + - http.title:"adobe connect" - platform: fofa queries: - title="adobe connect" - title="openvpn connect" - platform: google queries: - - intitle:"openvpn connect" - intitle:"adobe connect" + - intitle:"openvpn connect" - name: rg-uac_firmware vendor: ruijie @@ -4987,8 +4987,8 @@ - title="concrete5" - platform: google queries: - - intitle:"concrete5" - intitle:"install concrete5" + - intitle:"concrete5" - name: apisix vendor: apache @@ -5010,8 +5010,8 @@ engines: - platform: fofa queries: - - title="mesos" - app="apache-mesos" + - title="mesos" - platform: shodan queries: - http.title:"mesos" @@ -5072,8 +5072,8 @@ - http.html:"fortiwlm" - platform: fofa queries: - - title="fortiwlm" - body="fortiwlm" + - title="fortiwlm" - platform: google queries: - intitle:"fortiwlm" @@ -5098,14 +5098,14 @@ engines: - platform: shodan queries: - - cpe:"cpe:2.3:o:fortinet:fortios" - http.favicon.hash:945408572 - - port:10443 http.favicon.hash:945408572 + - cpe:"cpe:2.3:o:fortinet:fortios" - http.html:"/remote/login" "xxxxxxxx" + - port:10443 http.favicon.hash:945408572 - platform: fofa queries: - - icon_hash=945408572 - body="/remote/login" "xxxxxxxx" + - icon_hash=945408572 - name: fortiap vendor: fortinet @@ -5164,8 +5164,8 @@ engines: - platform: fofa queries: - - app="kkfileview" - body="kkfileview" + - app="kkfileview" - platform: shodan queries: - http.html:"kkfileview" @@ -5190,8 +5190,8 @@ - platform: fofa queries: - body="apache struts" - - title="struts2 showcase" - body="struts problem report" + - title="struts2 showcase" - platform: google queries: - intitle:"struts2 showcase" @@ -5246,8 +5246,8 @@ - http.html:"weblogic application server" - platform: fofa queries: - - title="weblogic" - body="weblogic application server" + - title="weblogic" - platform: google queries: - intitle:"weblogic" @@ -5310,8 +5310,8 @@ engines: - platform: shodan queries: - - cpe:"cpe:2.3:a:gogs:gogs" - http.title:"sign in - gogs" + - cpe:"cpe:2.3:a:gogs:gogs" - platform: fofa queries: - title="sign in - gogs" @@ -5388,12 +5388,12 @@ engines: - platform: shodan queries: - - http.html:"microweber" - http.favicon.hash:780351152 + - http.html:"microweber" - platform: fofa queries: - - icon_hash=780351152 - body="microweber" + - icon_hash=780351152 - name: stock_ticker vendor: urosevic @@ -5582,12 +5582,12 @@ engines: - platform: fofa queries: - - title="thinkphp" - header="think_lang" + - title="thinkphp" - platform: shodan queries: - - cpe:"cpe:2.3:a:thinkphp:thinkphp" - http.title:"thinkphp" + - cpe:"cpe:2.3:a:thinkphp:thinkphp" - platform: google queries: - intitle:"thinkphp" @@ -5598,8 +5598,8 @@ engines: - platform: shodan queries: - - http.title:"emerge" - http.title:"linear emerge" + - http.title:"emerge" - platform: fofa queries: - title="linear emerge" @@ -5627,8 +5627,8 @@ - http.title:"wi-fi app login" - platform: fofa queries: - - title="wi-fi app login" - body="wn530hg4" + - title="wi-fi app login" - platform: google queries: - intitle:"wi-fi app login" @@ -5721,12 +5721,12 @@ engines: - platform: shodan queries: - - http.html:"pmb group" - http.favicon.hash:1469328760 + - http.html:"pmb group" - platform: fofa queries: - - icon_hash=1469328760 - body="pmb group" + - icon_hash=1469328760 - name: eshop_-_ecommerce_\/_store_website vendor: wrteam @@ -5889,8 +5889,8 @@ - http.favicon.hash:-1521640213 - platform: fofa queries: - - title="hoteldruid" - icon_hash=-1521640213 + - title="hoteldruid" - platform: google queries: - intitle:"hoteldruid" @@ -5901,8 +5901,8 @@ engines: - platform: shodan queries: - - http.html:"powered by atmail" - http.html:"atmail" + - http.html:"powered by atmail" - platform: fofa queries: - body="powered by atmail" @@ -6102,8 +6102,8 @@ engines: - platform: fofa queries: - - icon_hash=217119619 - app="rstudio-connect" + - icon_hash=217119619 - title="openvpn connect" - platform: shodan queries: @@ -6133,12 +6133,12 @@ engines: - platform: fofa queries: - - body="ofbiz" - app="apache_ofbiz" + - body="ofbiz" - platform: shodan queries: - - ofbiz.visitor= - http.html:"ofbiz" + - ofbiz.visitor= - name: flatpress vendor: flatpress @@ -6150,8 +6150,8 @@ - http.html:"flatpress" - platform: fofa queries: - - body="flatpress" - icon_hash=-1189292869 + - body="flatpress" - name: masacms vendor: masacms @@ -6290,9 +6290,9 @@ engines: - platform: fofa queries: - - app="zimbra-邮件系统" - - icon_hash="475145467" - icon_hash="1624375939" + - icon_hash="475145467" + - app="zimbra-邮件系统" - platform: shodan queries: - http.favicon.hash:"475145467" @@ -6334,8 +6334,8 @@ engines: - platform: fofa queries: - - icon_hash=-1250474341 - app="vmware-workspace-one-access" || app="vmware-identity-manager" || app="vmware-vrealize" + - icon_hash=-1250474341 - platform: shodan queries: - http.favicon.hash:-1250474341 @@ -6448,8 +6448,8 @@ engines: - platform: shodan queries: - - http.html:"reprise license" - http.html:"reprise license manager" + - http.html:"reprise license" - platform: fofa queries: - body="reprise license" @@ -6614,8 +6614,8 @@ engines: - platform: fofa queries: - - title="identity management" html:"freeipa" - title="identity management" + - title="identity management" html:"freeipa" - platform: shodan queries: - http.title:"identity management" html:"freeipa" @@ -6709,8 +6709,8 @@ engines: - platform: shodan queries: - - cpe:"cpe:2.3:a:atlassian:bitbucket" - http.component:"bitbucket" + - cpe:"cpe:2.3:a:atlassian:bitbucket" - name: lin-cms-spring-boot vendor: talelin @@ -6793,8 +6793,8 @@ engines: - platform: fofa queries: - - app="ncast-产品" && title=="高清智能录播系统" - title="高清智能录播系统" + - app="ncast-产品" && title=="高清智能录播系统" - platform: zoomeye queries: - title:"高清智能录播系统" @@ -6895,8 +6895,8 @@ engines: - platform: fofa queries: - - icon_hash=1484947000,1828756398,1170495932 - icon_hash=1484947000 + - icon_hash=1484947000,1828756398,1170495932 - app="goanywhere-mft" - platform: shodan queries: @@ -6915,8 +6915,8 @@ - /wp-content/plugins/nextgen-gallery/ - platform: shodan queries: - - http.html:/wp-content/plugins/nextgen-gallery/ - cpe:"cpe:2.3:a:imagely:nextgen_gallery" + - http.html:/wp-content/plugins/nextgen-gallery/ - platform: fofa queries: - body=/wp-content/plugins/nextgen-gallery/ @@ -6968,13 +6968,13 @@ - wp-content/plugins/eventon/ - platform: publicwww queries: - - /wp-content/plugins/eventon/ - /wp-content/plugins/eventon-lite/ + - /wp-content/plugins/eventon/ - platform: shodan queries: - - http.html:/wp-content/plugins/eventon/ - - http.html:/wp-content/plugins/eventon-lite/ - vuln:cve-2023-2796 + - http.html:/wp-content/plugins/eventon-lite/ + - http.html:/wp-content/plugins/eventon/ - platform: google queries: - inurl:"/wp-content/plugins/eventon/" @@ -7072,15 +7072,15 @@ engines: - platform: shodan queries: - - http.favicon.hash:-2097033750 - http.title:"verta ai" + - http.favicon.hash:-2097033750 - platform: zoomeye queries: - title:"verta ai" - platform: fofa queries: - - title="verta ai" - icon_hash=-2097033750 + - title="verta ai" - platform: google queries: - intitle:"verta ai" @@ -7125,8 +7125,8 @@ engines: - platform: shodan queries: - - http.title:"vmware vrealize network insight" - http.title:"vmware aria operations" + - http.title:"vmware vrealize network insight" - platform: fofa queries: - title="vmware aria operations" @@ -7268,8 +7268,8 @@ engines: - platform: fofa queries: - - app="powerjob" - body="powerjob" + - app="powerjob" - platform: shodan queries: - http.html:"powerjob" @@ -7468,8 +7468,8 @@ engines: - platform: shodan queries: - - http.html:"wago" - http.html:"/wbm/" html:"wago" + - http.html:"wago" - platform: fofa queries: - body="wago" @@ -7592,9 +7592,9 @@ engines: - platform: shodan queries: - - http.html:"content=\"papercut\"" - - http.html:"papercut" - cpe:"cpe:2.3:a:papercut:papercut_mf" + - http.html:"papercut" + - http.html:"content=\"papercut\"" - platform: fofa queries: - body="papercut" @@ -7732,8 +7732,8 @@ - http.title:"icewarp" - platform: fofa queries: - - title="icewarp" - icon_hash=2144485375 + - title="icewarp" - platform: google queries: - intitle:"icewarp" @@ -7854,12 +7854,12 @@ - platform: shodan queries: - http.html:craftcms - - http.favicon.hash:-47932290 - cpe:"cpe:2.3:a:craftcms:craft_cms" + - http.favicon.hash:-47932290 - platform: fofa queries: - - icon_hash=-47932290 - body=craftcms + - icon_hash=-47932290 - name: companion_sitemap_generator vendor: codeermeneer @@ -8045,8 +8045,8 @@ - platform: shodan queries: - http.title:"opencms" - - /opencms/ - cpe:"cpe:2.3:a:alkacon:opencms" + - /opencms/ - platform: fofa queries: - title="opencms" @@ -8176,8 +8176,8 @@ - platform: shodan queries: - cpe:"cpe:2.3:a:vbulletin:vbulletin" - - http.html:"powered by vbulletin" - http.title:"powered by vbulletin" + - http.html:"powered by vbulletin" - http.component:"vbulletin" - platform: fofa queries: @@ -8333,8 +8333,8 @@ - app="microsoft-sharepoint" - platform: shodan queries: - - http.headers_hash:-1968878704 - cpe:"cpe:2.3:a:microsoft:sharepoint_server" + - http.headers_hash:-1968878704 - name: manageengine_firewall_analyzer vendor: zohocorp @@ -8401,12 +8401,12 @@ engines: - platform: shodan queries: - - http.html:"cockpit" - http.favicon.hash:688609340 + - http.html:"cockpit" - platform: fofa queries: - - icon_hash=688609340 - body="cockpit" + - icon_hash=688609340 - name: intercom_broadcast_system vendor: hikvision @@ -8521,8 +8521,8 @@ - http.favicon.hash:463802404 - platform: fofa queries: - - body="ray dashboard" - icon_hash=463802404 + - body="ray dashboard" - name: magnusbilling vendor: magnussolution @@ -8572,17 +8572,17 @@ - platform: shodan queries: - http.title:"icewarp" - - http.title:"icewarp server administration" - cpe:"cpe:2.3:a:icewarp:mail_server" + - http.title:"icewarp server administration" - platform: fofa queries: - - title="icewarp" - title="icewarp server administration" + - title="icewarp" - platform: google queries: - intitle:"icewarp" - - intitle:"icewarp server administration" - powered by icewarp 10.4.4 + - intitle:"icewarp server administration" - name: timekeeper vendor: fsmlabs @@ -8723,8 +8723,8 @@ engines: - platform: shodan queries: - - http.title:"home assistant" - cpe:"cpe:2.3:a:home-assistant:home-assistant" + - http.title:"home assistant" - platform: fofa queries: - title="home assistant" @@ -8776,8 +8776,8 @@ engines: - platform: shodan queries: - - '"microsoft-iis" "2015"' - cpe:"cpe:2.3:o:microsoft:windows_7" + - '"microsoft-iis" "2015"' - name: tivoli_common_reporting vendor: ibm @@ -8812,8 +8812,8 @@ engines: - platform: shodan queries: - - http.component:"atlassian confluence" - cpe:"cpe:2.3:a:atlassian:confluence" + - http.component:"atlassian confluence" - name: mypixs vendor: mypixs_project @@ -8979,8 +8979,8 @@ engines: - platform: shodan queries: - - http.title:"phppgadmin" - cpe:"cpe:2.3:a:phppgadmin_project:phppgadmin" + - http.title:"phppgadmin" - platform: fofa queries: - title="phppgadmin" @@ -9122,12 +9122,12 @@ engines: - platform: shodan queries: - - http.title:"icewarp" - http.title:"gotify" + - http.title:"icewarp" - platform: fofa queries: - - title="icewarp" - title="gotify" + - title="icewarp" - platform: google queries: - intitle:"icewarp" @@ -9224,8 +9224,8 @@ - body="dedecms" - platform: shodan queries: - - http.html:"dedecms" - cpe:"cpe:2.3:a:dedecms:dedecms" + - http.html:"dedecms" - name: custom_admin_page vendor: bestwebsoft @@ -9492,8 +9492,8 @@ engines: - platform: fofa queries: - - amcrest - body="amcrest" + - amcrest - platform: shodan queries: - http.html:"amcrest" @@ -9770,8 +9770,8 @@ - http.title:"revive adserver" - platform: fofa queries: - - title="revive adserver" - icon_hash=106844876 + - title="revive adserver" - platform: google queries: - intitle:"revive adserver" @@ -9900,8 +9900,8 @@ engines: - platform: shodan queries: - - http.html:"impresscms" - cpe:"cpe:2.3:a:impresscms:impresscms" + - http.html:"impresscms" - platform: fofa queries: - body="impresscms" @@ -10005,13 +10005,13 @@ engines: - platform: shodan queries: - - 'http.html:"powered by: fudforum"' - - http.html:"fudforum" - http.html:fudforum" + - http.html:"fudforum" + - 'http.html:"powered by: fudforum"' - platform: fofa queries: - - 'body="powered by: fudforum"' - body="fudforum" + - 'body="powered by: fudforum"' - name: vigorconnect vendor: draytek @@ -10427,8 +10427,8 @@ engines: - platform: shodan queries: - - http.html:"resin" - cpe:"cpe:2.3:a:caucho:resin" + - http.html:"resin" - platform: fofa queries: - body="resin" @@ -10439,13 +10439,13 @@ engines: - platform: shodan queries: - - http.html:"jellyfin" - http.title:"jellyfin" + - http.html:"jellyfin" - platform: fofa queries: - - title="jellyfin" - - body="jellyfin" - title="jellyfin" || body="http://jellyfin.media" + - body="jellyfin" + - title="jellyfin" - platform: google queries: - intitle:"jellyfin" @@ -10492,8 +10492,8 @@ engines: - platform: fofa queries: - - title="jeecg-boot" - title="jeecgboot 企业级低代码平台" + - title="jeecg-boot" - platform: shodan queries: - http.title:"jeecg-boot" @@ -10644,8 +10644,8 @@ engines: - platform: fofa queries: - - app="74cms" - body="74cms" + - app="74cms" - platform: shodan queries: - http.html:"74cms" @@ -10814,8 +10814,8 @@ - http.html:"micollab" - platform: fofa queries: - - body="micollab" - body="mitel" html:"micollab" + - body="micollab" - name: zzcms vendor: zzcms @@ -10835,8 +10835,8 @@ - body="javax.faces.viewstate" - platform: shodan queries: - - http.html:"javax.faces.resource" - http.html:"javax.faces.viewstate" + - http.html:"javax.faces.resource" - name: wn575a4_firmware vendor: wavlink @@ -10894,8 +10894,8 @@ engines: - platform: shodan queries: - - cpe:"cpe:2.3:a:acme:mini-httpd" - 'server: mini_httpd && 200' + - cpe:"cpe:2.3:a:acme:mini-httpd" - name: avatar_uploader vendor: drupal @@ -10911,8 +10911,8 @@ engines: - platform: shodan queries: - - http.title:"login - jorani" - http.favicon.hash:-2032163853 + - http.title:"login - jorani" - platform: fofa queries: - icon_hash=-2032163853 @@ -11338,8 +11338,8 @@ engines: - platform: shodan queries: - - product:"openssh" - cpe:"cpe:2.3:a:openbsd:openssh" + - product:"openssh" - name: mysql vendor: oracle @@ -15186,13 +15186,13 @@ engines: - platform: shodan queries: - - http.html:"solarview compact" - cpe:"cpe:2.3:h:contec:solarview_compact" + - http.html:"solarview compact" - http.favicon.hash:"-244067125" - platform: fofa queries: - - icon_hash="-244067125" - body="solarview compact" + - icon_hash="-244067125" - name: mc3 vendor: crestron @@ -16096,8 +16096,8 @@ engines: - platform: shodan queries: - - cpe:"cpe:2.3:h:dlink:dir-615" - http.title:"roteador wireless" + - cpe:"cpe:2.3:h:dlink:dir-615" - platform: fofa queries: - title="roteador wireless" @@ -18295,8 +18295,8 @@ engines: - platform: shodan queries: - - http.html:"aspera faspex" - cpe:"cpe:2.3:o:linux:linux_kernel" + - http.html:"aspera faspex" - platform: fofa queries: - body="aspera faspex" @@ -19076,8 +19076,8 @@ engines: - platform: fofa queries: - - app="openemr" - body="openemr" + - app="openemr" - icon_hash=1971268439 - title="openemr" - platform: google @@ -19085,9 +19085,9 @@ - intitle:"openemr" - platform: shodan queries: + - http.title:"openemr" - http.html:"openemr" - http.favicon.hash:1971268439 - - http.title:"openemr" - name: download_monitor vendor: mikejolley @@ -19211,8 +19211,8 @@ engines: - platform: shodan queries: - - http.html:"__gradio_mode__" - http.title:"gradio" + - http.html:"__gradio_mode__" - platform: fofa queries: - title="gradio"