-
-
Notifications
You must be signed in to change notification settings - Fork 12
/
demo.cast
73 lines (73 loc) · 17.5 KB
/
demo.cast
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
{"version": 2, "width": 190, "height": 46, "timestamp": 1729172921, "env": {"SHELL": "/usr/bin/zsh", "TERM": "xterm-256color"}}
[0.549615, "o", "\u001b[1m\u001b[7m%\u001b[27m\u001b[1m\u001b[0m \r \r\u001b]2;manu@manu-pc:~\u0007\u001b]1;~\u0007"]
[0.5607, "o", "\r\u001b[0m\u001b[27m\u001b[24m\u001b[J\u001b[39m\u001b[0m\u001b[49m\u001b[40m\u001b[39m manu@manu-pc \u001b[44m\u001b[30m\u001b[30m ~ \u001b[49m\u001b[34m\u001b[39m \u001b[K"]
[0.560786, "o", "\u001b[?1h\u001b=\u001b[?2004h"]
[0.872746, "o", "c"]
[0.92654, "o", "\bcu"]
[1.030414, "o", "r"]
[1.094325, "o", "l"]
[1.166719, "o", " "]
[1.351184, "o", "http://127.0.0.1:8080 -I -H \"Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE3MjkxNTczMzYsImlhdCI6MTcyOTE1MzczNiwibmFtZSI6IkpvaG4gRG9lIiwic3ViIjoiMmNiMzA3YmEtYmI0Ni00MTk0LTg1NGYtNDc3NDA0NmQ5YzliIn0.dqaX_Jsabyqz-fJyF9tfQdpOL6ft2SfZKkRdQr0qhDY\"\u001b[K"]
[1.582737, "o", "\u001b[?1l\u001b>"]
[1.582788, "o", "\u001b[?2004l\r\r\n"]
[1.583479, "o", "\u001b]2;curl http://127.0.0.1:8080 -I -H \u0007\u001b]1;curl\u0007"]
[1.59193, "o", "HTTP/1.1 401 Unauthorized\r\r\n\u001b[1mDate\u001b[0m: Thu, 17 Oct 2024 13:48:43 GMT\r\r\n\r\r\n"]
[1.592547, "o", "\u001b[1m\u001b[7m%\u001b[27m\u001b[1m\u001b[0m \r \r"]
[1.592617, "o", "\u001b]2;manu@manu-pc:~\u0007\u001b]1;~\u0007"]
[1.600249, "o", "\r\u001b[0m\u001b[27m\u001b[24m\u001b[J\u001b[39m\u001b[0m\u001b[49m\u001b[40m\u001b[39m manu@manu-pc \u001b[44m\u001b[30m\u001b[30m ~ \u001b[49m\u001b[34m\u001b[39m \u001b[K"]
[1.600281, "o", "\u001b[?1h\u001b="]
[1.600308, "o", "\u001b[?2004h"]
[2.991362, "o", "curl http://127.0.0.1:8080 -I -H \"Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE3MjkxNTczMzYsImlhdCI6MTcyOTE1MzczNiwibmFtZSI6IkpvaG4gRG9lIiwic3ViIjoiMmNiMzA3YmEtYmI0Ni00MTk0LTg1NGYtNDc3NDA0NmQ5YzliIn0.dqaX_Jsabyqz-fJyF9tfQdpOL6ft2SfZKkRdQr0qhDY\"\u001b[K"]
[3.366271, "o", "\u001b[A\u001b[79D"]
[4.007501, "o", "vcurl http://127.0.0.1:8080 -I -H \"Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE3MjkxNTczMzYsImlhdCI6MTcyOTE1MzczNiwibmFtZSI6IkpvaG4gRG9lIiwic3ViIjoiMmNiMzA3YmEtYmI0Ni00MTk0LTg1NGYtNDc3NDA0NmQ5YzliIn0.dqaX_Jsabyqz-fJyF9tfQdpOL6ft2SfZKkRdQr0qhDY\"\u001b[A\u001b[79D"]
[4.062914, "o", "\bvucurl http://127.0.0.1:8080 -I -H \"Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE3MjkxNTczMzYsImlhdCI6MTcyOTE1MzczNiwibmFtZSI6IkpvaG4gRG9lIiwic3ViIjoiMmNiMzA3YmEtYmI0Ni00MTk0LTg1NGYtNDc3NDA0NmQ5YzliIn0.dqaX_Jsabyqz-fJyF9tfQdpOL6ft2SfZKkRdQr0qhDY\"\u001b[A\u001b[79D"]
[4.110254, "o", "lcurl http://127.0.0.1:8080 -I -H \"Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE3MjkxNTczMzYsImlhdCI6MTcyOTE1MzczNiwibmFtZSI6IkpvaG4gRG9lIiwic3ViIjoiMmNiMzA3YmEtYmI0Ni00MTk0LTg1NGYtNDc3NDA0NmQ5YzliIn0.dqaX_Jsabyqz-fJyF9tfQdpOL6ft2SfZKkRdQr0qhDY\"\u001b[A\u001b[79D"]
[4.278522, "o", "ncurl http://127.0.0.1:8080 -I -H \"Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE3MjkxNTczMzYsImlhdCI6MTcyOTE1MzczNiwibmFtZSI6IkpvaG4gRG9lIiwic3ViIjoiMmNiMzA3YmEtYmI0Ni00MTk0LTg1NGYtNDc3NDA0NmQ5YzliIn0.dqaX_Jsabyqz-fJyF9tfQdpOL6ft2SfZKkRdQr0qhDY\"\u001b[A\u001b[79D"]
[4.278632, "o", "acurl http://127.0.0.1:8080 -I -H \"Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE3MjkxNTczMzYsImlhdCI6MTcyOTE1MzczNiwibmFtZSI6IkpvaG4gRG9lIiwic3ViIjoiMmNiMzA3YmEtYmI0Ni00MTk0LTg1NGYtNDc3NDA0NmQ5YzliIn0.dqaX_Jsabyqz-fJyF9tfQdpOL6ft2SfZKkRdQr0qhDY\"\u001b[A\u001b[79D"]
[5.070958, "o", "pcurl http://127.0.0.1:8080 -I -H \"Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE3MjkxNTczMzYsImlhdCI6MTcyOTE1MzczNiwibmFtZSI6IkpvaG4gRG9lIiwic3ViIjoiMmNiMzA3YmEtYmI0Ni00MTk0LTg1NGYtNDc3NDA0NmQ5YzliIn0.dqaX_Jsabyqz-fJyF9tfQdpOL6ft2SfZKkRdQr0qhDY\"\u001b[A\u001b[79D"]
[5.118741, "o", "icurl http://127.0.0.1:8080 -I -H \"Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE3MjkxNTczMzYsImlhdCI6MTcyOTE1MzczNiwibmFtZSI6IkpvaG4gRG9lIiwic3ViIjoiMmNiMzA3YmEtYmI0Ni00MTk0LTg1NGYtNDc3NDA0NmQ5YzliIn0.dqaX_Jsabyqz-fJyF9tfQdpOL6ft2SfZKkRdQr0qhDY\"\u001b[A\u001b[79D"]
[5.198965, "o", " curl http://127.0.0.1:8080 -I -H \"Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE3MjkxNTczMzYsImlhdCI6MTcyOTE1MzczNiwibmFtZSI6IkpvaG4gRG9lIiwic3ViIjoiMmNiMzA3YmEtYmI0Ni00MTk0LTg1NGYtNDc3NDA0NmQ5YzliIn0.dqaX_Jsabyqz-fJyF9tfQdpOL6ft2SfZKkRdQr0qhDY\"\u001b[A\u001b[79D"]
[5.623227, "o", "scurl http://127.0.0.1:8080 -I -H \"Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE3MjkxNTczMzYsImlhdCI6MTcyOTE1MzczNiwibmFtZSI6IkpvaG4gRG9lIiwic3ViIjoiMmNiMzA3YmEtYmI0Ni00MTk0LTg1NGYtNDc3NDA0NmQ5YzliIn0.dqaX_Jsabyqz-fJyF9tfQdpOL6ft2SfZKkRdQr0qhDY\"\u001b[A\u001b[79D"]
[5.646896, "o", "\u001b[1Ccurl http://127.0.0.1:8080 -I -H \"Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE3MjkxNTczMzYsImlhdCI6MTcyOTE1MzczNiwibmFtZSI6IkpvaG4gRG9lIiwic3ViIjoiMmNiMzA3YmEtYmI0Ni00MTk0LTg1NGYtNDc3NDA0NmQ5YzliIn0.dqaX_Jsabyqz-fJyF9tfQdpOL6ft2SfZKkRdQr0qhDY\"\u001b[A\u001b[79D"]
[5.815085, "o", "acurl http://127.0.0.1:8080 -I -H \"Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE3MjkxNTczMzYsImlhdCI6MTcyOTE1MzczNiwibmFtZSI6IkpvaG4gRG9lIiwic3ViIjoiMmNiMzA3YmEtYmI0Ni00MTk0LTg1NGYtNDc3NDA0NmQ5YzliIn0.dqaX_Jsabyqz-fJyF9tfQdpOL6ft2SfZKkRdQr0qhDY\"\u001b[A\u001b[79D"]
[5.910902, "o", "ncurl http://127.0.0.1:8080 -I -H \"Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE3MjkxNTczMzYsImlhdCI6MTcyOTE1MzczNiwibmFtZSI6IkpvaG4gRG9lIiwic3ViIjoiMmNiMzA3YmEtYmI0Ni00MTk0LTg1NGYtNDc3NDA0NmQ5YzliIn0.dqaX_Jsabyqz-fJyF9tfQdpOL6ft2SfZKkRdQr0qhDY\"\u001b[A\u001b[79D"]
[5.942392, "o", " curl http://127.0.0.1:8080 -I -H \"Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE3MjkxNTczMzYsImlhdCI6MTcyOTE1MzczNiwibmFtZSI6IkpvaG4gRG9lIiwic3ViIjoiMmNiMzA3YmEtYmI0Ni00MTk0LTg1NGYtNDc3NDA0NmQ5YzliIn0.dqaX_Jsabyqz-fJyF9tfQdpOL6ft2SfZKkRdQr0qhDY\"\u001b[A\u001b[79D"]
[6.143006, "o", "\u001b[?1l\u001b>"]
[6.143066, "o", "\u001b[?2004l\u001b[1B\r\r\n"]
[6.143722, "o", "\u001b]2;vulnapi scan curl http://127.0.0.1:8080 -I -H \u0007\u001b]1;vulnapi\u0007"]
[6.298097, "o", "\r 7% |████████████ | (1/14) "]
[6.308194, "o", "\r \r\r 14% |████████████████████████ | (2/14) "]
[6.549512, "o", "\r \r\r 21% |████████████████████████████████████ | (3/14) \r \r\r 28% |████████████████████████████████████████████████ | (4/14) "]
[6.549898, "o", "\r \r"]
[6.549944, "o", "\r 35% |████████████████████████████████████████████████████████████ | (5/14) "]
[6.550186, "o", "\r \r"]
[6.550226, "o", "\r 42% |████████████████████████████████████████████████████████████████████████ | (6/14) "]
[6.550378, "o", "\r \r"]
[6.550415, "o", "\r 50% |██████████████████████████████████████████████████████████████████████████████████████ | (7/14) "]
[6.550701, "o", "\r \r"]
[6.550769, "o", "\r 57% |██████████████████████████████████████████████████████████████████████████████████████████████████ | (8/14) "]
[6.550866, "o", "\r \r"]
[6.550902, "o", "\r 64% |██████████████████████████████████████████████████████████████████████████████████████████████████████████████ | (9/14) "]
[8.327448, "o", "\r \r\r 71% |██████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████ | (10/14) "]
[8.327905, "o", "\r \r\r 78% |██████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████ | (11/14) "]
[8.328168, "o", "\r \r"]
[8.328314, "o", "\r 85% |██████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████ | (12/14) "]
[8.328485, "o", "\r \r\r 92% |██████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████ | (13/14) "]
[8.328776, "o", "\r \r\r 100% |████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████| (14/14) "]
[8.367945, "o", "\r\nError: There are some high-risk issues. It's advised to take immediate action.\r\n\r\n"]
[8.368049, "o", "| STATUS | SCANS NUMBER |\r\n|---------|"]
[8.368084, "o", "--------------|\r\n| \u001b[1mPassed\u001b[0m | \u001b[1m11\u001b[0m |\r\n| \u001b[1mFailed\u001b[0m | \u001b[1m2\u001b[0m |\r\n| \u001b[1mSkipped\u001b[0m | \u001b[1m2\u001b[0m |\r\n"]
[8.368178, "o", "| \u001b[1mNone\u001b[0m | \u001b[1m0\u001b[0m |\r\n\r\n"]
[8.368697, "o", "| OPERATION | RISK LEVEL | CVSS 4.0 SCORE | OWASP | ISSUE |\r\n"]
[8.368738, "o", "|-----------|------------|----------------|--------------------------------|--------------------------------|\r\n"]
[8.368787, "o", "| GET | \u001b[1;101mCritical\u001b[0m | 9.3 | API2:2023 Broken | JWT Algorithm None is accepted |\r\n| | | | Authentication | |\r\n"]
[8.36884, "o", "| | \u001b[1;43mMedium\u001b[0m | 5.1 | API8:2023 Security | CSP frame-ancestors policy is |\r\n| | | | Misconfiguration | not set |\r\n"]
[8.368882, "o", "| | \u001b[1;43mMedium\u001b[0m | 5.1 | API8:2023 Security | CORS Headers are missing |\r\n| | | | Misconfiguration | |\r\n"]
[8.368933, "o", "| | \u001b[1;43mMedium\u001b[0m | 5.1 | API8:2023 Security | X-Frame-Options Header is |\r\n| | | | Misconfiguration | missing |\r\n"]
[8.368969, "o", "| | \u001b[1;44mInfo\u001b[0m | 0.0 | API8:2023 Security | CSP Header is not set |\r\n| | | | Misconfiguration | |\r\n"]
[8.369268, "o", "| | \u001b[1;44mInfo\u001b[0m | 0.0 | API8:2023 Security | HSTS Header is missing |\r\n| | | | Misconfiguration | |\r\n| | \u001b[1;44mInfo\u001b[0m | 0.0 | API8:2023 Security | X-Content-Type-Options Header |\r\n| | | | Misconfiguration | is missing |\r\n\r\n"]
[8.373265, "o", "\u001b[1m\u001b[7m%\u001b[27m\u001b[1m\u001b[0m \r \r"]
[8.373387, "o", "\u001b]2;manu@manu-pc:~\u0007\u001b]1;~\u0007"]
[8.381705, "o", "\r\u001b[0m\u001b[27m\u001b[24m\u001b[J\u001b[39m\u001b[0m\u001b[49m\u001b[40m\u001b[39m manu@manu-pc \u001b[44m\u001b[30m\u001b[30m ~ \u001b[49m\u001b[34m\u001b[39m \u001b[K"]
[8.381772, "o", "\u001b[?1h\u001b=\u001b[?2004h"]
[8.90217, "o", "\u001b[?2004l\r\r\n"]