Skip to content
This repository has been archived by the owner on Feb 6, 2023. It is now read-only.
/ l9plugins Public archive

LeakIX maintained plugins implementing the l9format golang plugin interface.

License

Notifications You must be signed in to change notification settings

LeakIX/l9plugins

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

79 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

l9 suite stock plugins

GitHub Release Follow on Twitter

This repository contains LeakIX maintained plugins implementing the l9format golang plugin interface. They are currently used by l9explore but could be implemented by Go security tool.

Current plugins

Plugin Protocols Stage Description Author
apachestatus_http http http Checks for apache status pages
configjson_http http http Scans for valid config.json files
dotenv_http http http Scans for valid .env files
gitconfig_http http http Scans for valid .git/config files
idxconfig_http http http Scans for /idx_config directories with text files
laraveltelescope_http http http Scans for open Laravel debuggers
phpinfo_http http http Scans for valid /phpinfo.php files
mysql_open mysql open Connects and checks for default credentials
mysql_explore mysql explore Connects and list databases, sizes
mongo_open mongo open Connects and checks for open instance
mongo_explore mongo explore Connects and list collections, sizes
elasticsearch_open elasticsearch,kibana open Connects and checks for open instance
elasticsearch_explore elasticsearch,kibana explore Connects and list index, sizes
redis_open redis open Connects and checks for open instance
kafka_open kafka} open Connects and lists topics
couchdb_open couchdb open Connects and list databases, sizes
firebase_http firebase open Connects to firebase and checks for .json files @phretor
confluence_version http http Scans confluence for vulnerable versions @HaboubiAnis
jira_plugin http http Scans Jira for vulnerable versions @HaboubiAnis
apache_traversal http http Scan servers for Apache LFI @HaboubiAnis
wpenum_http http http Enumerates Wordpress users from CVE-2017-5487
dotdsstore_open http open Reads .DS_Store to enumerate files and directories on target

Creating service plugins

Checkout the l9plugin documentation on how to create your plugins.

About

LeakIX maintained plugins implementing the l9format golang plugin interface.

Resources

License

Stars

Watchers

Forks

Packages

No packages published

Languages