修改指纹-[bitbucket]

[j4vaovo]

测试目标

http://202.105.96.141:9090/

指纹的Yaml规则

name: bitbucket
priority: 3
nuclei_tags:
 - - bitbucket
fingerprint:
 - path: /
   request_method: get
   request_headers: {}
   request_data: ''
   status_code: 0
   headers: {}
   keyword:
     - bitbucket.page.login
   favicon_hash: []

[github-actions]

验证过程:

点击展开查看

URL: �[38;5;10mhttp://202.105.96.141:9090/�[39m
HEADERS:
x-arequestid: @N3OOC1x858x159669x0
x-asen: SEN-L15498324
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache
location: http://202.105.96.141:9090/dashboard
content-language: en-US
content-length: 0
date: Sat, 17 Jun 2023 18:18:55 GMT
COOKIES:
STATUS_CODE: 302
TEXT:

NEXT_URL: http://202.105.96.141:9090/dashboard
URL: �[38;5;10mhttp://202.105.96.141:9090/dashboard�[39m
HEADERS:
x-arequestid: @N3OOC1x858x159672x0
x-asen: SEN-L15498324
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache
location: http://202.105.96.141:9090/login?nextUrl=%2Fdashboard
content-language: en-US
content-length: 0
date: Sat, 17 Jun 2023 18:18:55 GMT
COOKIES:
STATUS_CODE: 302
TEXT:

NEXT_URL: http://202.105.96.141:9090/login?nextUrl=%2Fdashboard
URL: �[38;5;10mhttp://202.105.96.141:9090/login�[39m
HEADERS:
x-arequestid: @N3OOC1x858x159675x0
x-asen: SEN-L15498324
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache
vary: accept-encoding
date: Sat, 17 Jun 2023 18:18:58 GMT
content-type: text/html;charset=UTF-8
content-language: en-US
transfer-encoding: chunked
COOKIES:
STATUS_CODE: 200
TEXT:
<!doctype html><html lang="en"><head><meta charset="utf-8"><meta http-equiv="x-ua-compatible" content="ie=edge"><title>log in - git hs</title><script>
window.wrm=window.wrm||{};window.wrm._unparseddata=window.wrm._unparseddata||{};window.wrm._unparsederrors=window.wrm._unparsederrors||{};
wrm._unparseddata["com.atlassian.plugins.atlassian-plugins-webresource-plugin:context-path.context-path"]="\u0022\u0022";
wrm._unparseddata["com.atlassian.bitbucket.server.bitbucket-webpack-internal:date-format-preference.data"]="\u0022\u0022";
wrm._unparseddata["com.atlassian.analytics.analytics-client:policy-update-init.policy-update-data-provider"]="false";
wrm._unparseddata["com.atlassian.analytics.analytics-client:programmatic-analytics-init.programmatic-analytics-data-provider"]="false";
wrm._unparseddata["com.atlassian.bitbucket.server.feature-wrm-data:user.time.zone.onboarding.data"]="true";
if(window.wrm._dataarrived)window.wrm._dataarrived();</script>
<link type="text/css" rel="stylesheet" href="/s/2c94f7586903ef5103a08def8b41fb69-cdn/-1882713368/6843c74/1/7ffaa23f612df69467f160b585b19419/_/download/contextbatch/css/_super/batch.css" data-wrm-key="_super" data-wrm-batch-type="context" media="all">
<link type="text/css" rel="stylesheet" href="/s/c80acc58fa9df2d57ccc0c7482c8996b-cdn/-1882713368/6843c74/1/35279485dbf16b8ccb088f889334b46f/_/download/contextbatch/css/bitbucket.page.login,-_super/batch.css" data-wrm-key="bitbucket.page.login,-_super" data-wrm-batch-type="context" media="all">
<link type="text/css" rel="stylesheet" href="/s/71bb14da0ee5059a2b9789fc8912f26b-cdn/-1882713368/6843c74/1/baf676944b7dae51a1240c4bf361f44d/_/download/contextbatch/css/bitbucket.layout.focused,bitbucket.layout.base,atl.general,-_super/batch.css" data-wrm-key="bitbucket.layout.focused,bitbucket.layout.base,atl.general,-_super" data-wrm-batch-type="context" media="all">
<script type="text/javascript" src="/s/6a652a5bf37800fff191aa585e92944e-cdn/-1882713368/6843c74/1/7ffaa23f612df69467f160b585b19419/_/download/contextbatch/js/_super/batch.js?locale=en-us" data-wrm-key="_super" data-wrm-batch-type="context" data-initially-rendered></script>
<script type="text/javascript" src="/s/9c7295ec620c2bc04d8871743afe93a2-cdn/-1882713368/6843c74/1/35279485dbf16b8ccb088f889334b46f/_/download/contextbatch/js/bitbucket.page.login,-_super/batch.js?locale=en-us" data-wrm-key="bitbucket.page.login,-_super" data-wrm-batch-type="context" data-initially-rendered></script>
<script type="text/javascript" src="/s/8a2845859fbae75bad0d4cb2154f4354-cdn/-1882713368/6843c74/1/baf676944b7dae51a1240c4bf361f44d/_/download/contextbatch/js/bitbucket.layout.focused,bitbucket.layout.base,atl.general,-_super/batch.js?locale=en-us" data-wrm-key="bitbucket.layout.focused,bitbucket.layout.base,atl.general,-_super" data-wrm-batch-type="context" data-initially-rendered></script>
<meta name="application-name" content="bitbucket"><link rel="shortcut icon" type="image/x-icon" href="/s/-1882713368/6843c74/1/1.0/_/download/resources/com.atlassian.bitbucket.server.bitbucket-webpack-internal:favicon/favicon.ico" /><link rel="search" href="http://202.105.96.141:9090/plugins/servlet/opensearch-descriptor" type="application/opensearchdescription+xml" title="bitbucket code search"/></head><body class="aui-page-focused aui-page-focused-small aui-page-size-small bitbucket-theme user-login"><ul id="assistive-skip-links" class="assistive"><li><a href="#content">skip to content</a></li></ul><div id="page"><!-- start #header --><header id="header" role="banner"><section class="notifications"></section><nav class="aui-header aui-dropdown2-trigger-group" role="navigation"><div class="aui-header-inner"><div class="aui-header-before"><a class=" aui-dropdown2-trigger app-switcher-trigger" aria-controls="app-switcher" aria-haspopup="true" role="button" tabindex="0" data-aui-trigger href="#app-switcher"><span class="aui-icon aui-icon-small aui-iconfont-appswitcher">linked applications</span></a><div id="app-switcher" class="aui-dropdown2 aui-style-default" role="menu" aria-hidden="true" data-is-switcher="true" data-environment="{&quot;isuseradmin&quot;:false,&quot;isappsuggestionavailable&quot;:false,&quot;issiteadminuser&quot;:false}"><div role="application"><div class="app-switcher-loading">loading&hellip;</div></div></div></div><div class="aui-header-primary"><h1 id="logo" class="bitbucket-header-logo"><a href="http://202.105.96.141:9090">bitbucket</a></h1><ul class="aui-nav"></ul></div><div class="aui-header-secondary"><ul class="aui-nav"><li class=" help-link"title="help"><a class=" aui-dropdown2-trigger aui-dropdown2-trigger-arrowless" aria-controls="com.atlassian.bitbucket.server.bitbucket-server-web-fragments-help-menu" aria-haspopup="true" role="button" tabindex="0" data-aui-trigger><span class="aui-icon aui-icon-small aui-icon-small aui-iconfont-question-circle">help</span></a><div id="com.atlassian.bitbucket.server.bitbucket-server-web-fragments-help-menu" class="aui-dropdown2 aui-style-default" role="menu" aria-hidden="true"><div role="application"><div class="aui-dropdown2-section help-items-section"><ul class="aui-list-truncate" role="presentation"><li role="presentation"><a href="http://docs.atlassian.com/bitbucketserver/docs-072/bitbucket+server+documentation?utm_campaign=in-app-help&amp;amp;utm_medium=in-app-help&amp;amp;utm_source=stash" title="go to the online documentation for bitbucket" data-web-item-key="com.atlassian.bitbucket.server.bitbucket-server-web-fragments:general-help">online help</a></li><li role="presentation"><a href="https://www.atlassian.com/git?utm_campaign=learn-git&amp;utm_medium=in-app-help&amp;utm_source=stash" title="learn about git commands &amp; workflows" data-web-item-key="com.atlassian.bitbucket.server.bitbucket-server-web-fragments:learn-git">learn git</a></li><li role="presentation"><a href="/getting-started" class="getting-started-page-link" title="overview of bitbucket features" data-web-item-key="com.atlassian.bitbucket.server.bitbucket-server-web-fragments:getting-started-page-help-link">welcome to bitbucket</a></li><li role="presentation"><a href="/#" class="keyboard-shortcut-link" title="discover keyboard shortcuts in bitbucket" data-web-item-key="com.atlassian.bitbucket.server.bitbucket-server-web-fragments:keyboard-shortcuts-help-link">keyboard shortcuts</a></li><li role="presentation"><a href="http://go.atlassian.com/bitbucket-server-whats-new?utm_campaign=in-app-help&amp;utm_medium=in-app-help&amp;utm_source=stash" title="learn about what&#39;s new in bitbucket" data-web-item-key="com.atlassian.bitbucket.server.bitbucket-server-web-fragments:whats-new-link">what&#39;s new</a></li><li role="presentation"><a href="http://go.atlassian.com/bitbucket-server-community?utm_campaign=in-app-help&amp;utm_medium=in-app-help&amp;utm_source=stash" title="explore the atlassian community" data-web-item-key="com.atlassian.bitbucket.server.bitbucket-server-web-fragments:community-link">community</a></li><li role="presentation"><a href="mailto:service@softwaretao.com" id="bitsupport-item-link" data-web-item-key="csdn.bitbucket.languagepack.zh_cn:bitsupport-item">中文技术支持</a></li></ul></div></div></div></li><li class=" alerts-menu"title="view system alerts"><a href="#alerts" id="alerts-trigger" class="alerts-menu" title="view system alerts" data-web-item-key="com.atlassian.bitbucket.server.bitbucket-server-web-fragments:global-alerts-menu-item">alerts</a></li></ul></div></div> <!-- end .aui-header-inner --></nav> <!-- end .aui-header --></header><!-- end #header --><!-- start #content --><section id="content" role="main" tabindex="-1" data-timezone="-480" ><div class="aui-page-panel content-body"><div class="aui-page-panel-inner"><section class="aui-page-panel-content"><h2>log in</h2><form class="aui top-label prevent-double-submit " action="/j_atl_security_check" method="post" accept-charset="utf-8"><div class="field-group"><label for="j_username" >username</label><input class="text long-field" type="text" id="j_username"  name="j_username"  autofocus accesskey="u"/></div><div class="field-group"><label for="j_password" >password</label><input class="text long-field" type="password" id="j_password"  name="j_password"  accesskey="p"/></div><div class="aui-group"><fieldset class="group checkbox"><div class="checkbox"><input class="checkbox" type="checkbox" id="_atl_remember_me"  name="_atl_remember_me"  checked="checked"  accesskey="r"/><label for="_atl_remember_me" >keep me logged in</label></div></fieldset></div><div class="aui-group"><input name="querystring" type="hidden" value="nexturl=%2fdashboard"/><input class="aui-button aui-button-primary" type="submit" id="submit"  name="submit"  value="log in" accesskey="s"/><a id="forgot" class="aui-button aui-button-link"  name="forgot" href="/passwordreset" autocomplete="off" tabindex="0">unable to access your account?</a></div></form></section><!-- .aui-page-panel-content --></div><!-- .aui-page-panel-inner --></div><!-- .aui-page-panel --></section><!-- end #content --><!-- start #footer --><footer id="footer" role="contentinfo"><section class="notifications"></section><section class="footer-body"><ul><li data-key="footer.license.message">git repository management for enterprise teams powered by <a href="http://www.atlassian.com/software/bitbucket/">atlassian bitbucket</a></li></ul><ul><li>atlassian bitbucket <span title="6843c74aa7b6f02feb6bb6fe24e38e1d6a706f78" id="product-version" data-commitid="6843c74aa7b6f02feb6bb6fe24e38e1d6a706f78" data-system-build-number="6843c74"> v7.2.3</span></li><li data-key="footer.links.documentation"><a href="http://docs.atlassian.com/bitbucketserver/docs-072/bitbucket+server+documentation?utm_campaign=in-app-help&amp;utm_medium=in-app-help&amp;utm_source=stash" target="_blank">documentation</a></li><li data-key="footer.links.jac"><a href="https://jira.atlassian.com/browse/bserv" target="_blank">request a feature</a></li><li data-key="footer.links.about"><a href="/about">about</a></li><li data-key="footer.links.contact.atlassian"><a href="http://www.atlassian.com/company/contact/" target="_blank">contact atlassian</a></li></ul><div id="footer-logo"><a href="http://www.atlassian.com/" target="_blank">atlassian</a></div></section></footer><!-- end #footer --></div><script>require('bitbucket/internal/layout/base/base').onready(null, "git hs" ); require('bitbucket/internal/widget/keyboard-shortcuts/keyboard-shortcuts').onready();</script><script type="text/javascript">require('bitbucket/internal/page/login/login').onready();</script></body></html>
�[38;5;9mFAVICON: {
    "http://202.105.96.141:9090/s/-1882713368/6843c74/1/1.0/_/download/resources/com.atlassian.bitbucket.server.bitbucket-webpack-INTERNAL:favicon/favicon.ico": "d9edf2a6f791120dea5f27ae4faf1212",
}�[39m
Matching fingerprintV3WebFingerPrint {
    name: "bitbucket",
    priority: 3,
    request: WebFingerPrintRequest {
        path: "/",
        request_method: "get",
        request_headers: {},
        request_data: "",
    },
    match_rules: WebFingerPrintMatch {
        status_code: 0,
        favicon_hash: [],
        headers: {},
        keyword: [
            "bitbucket.page.login",
        ],
    },
}

验证结果：

• 是否识别成功： true

[github-actions]

审核通过:

• 指纹规则已经合并，感谢提交。