1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
|
##
# This file is part of WhatWeb and may be subject to
# redistribution and commercial restrictions. Please see the WhatWeb
# web site for more information on licensing and terms of use.
# http://www.morningstarsecurity.com/research/whatweb
##
Plugin.define "DirectAdmin" do
author "Brendan Coles <bcoles@gmail.com>" # 201-04-22
version "0.1"
description "Control panel for web hosting companies running Red Hat 7.x, 8.x, 9.x, Red Hat Enterprise and FreeBSD. - Homepage: http://www.directadmin.com/"
# 24 for intitle:"DirectAdmin Login" "DirectAdmin Login Page" "Please enter your Username and Password"
# Dorks #
dorks [
'intitle:"DirectAdmin Login" "DirectAdmin Login Page" "Please enter your Username and Password"'
]
# Examples #
examples %w|
www.directadmin.com:2222
datatelekom.net/noname2.php
ftp.sunrise-art.ru
www.erfbelasting.com:2222
www.vergelijkjongerenreizen.nl:2222
www.motomercado.com.ar:2222
www.xvo.pl:2222
serverint.m-it.tk
www.rdsi-host2.net:2222
www.uitinalkmaar.nl:2222
https://ireallyhost.com:2222
https://ryklys.serveriai.lt:8080
|
# Matches #
matches [
{ :text=>'<td class=listtitle colspan=2>Please enter your Username and Password</td></tr>' },
{ :text=>'<title>DirectAdmin Login</title>' },
{ :text=>'*{ FONT-SIZE: 8pt; FONT-FAMILY: verdana; } b { FONT-WEIGHT: bold; } .listtitle { BACKGROUND: #425984; COLOR: #EEEEEE; white-space: nowrap; } td.list { BACKGROUND: #EEEEEE; white-space: nowrap; } </style>' },
{ :text=>"onload=\"document.form.username.focus();if(document.form.referer.value.indexOf('#')==-1)document.form.referer.value+=location.hash;\">" },
]
# Passive #
def passive
m=[]
# Version Detection # HTTP Server Header
m << { :version=>@headers["server"].scan(/^DirectAdmin Daemon v([^\s]+) Registered to /) } if @headers["server"] =~ /^DirectAdmin Daemon v([^\s]+) Registered to /
# Return passive matches
m
end
end
|
