Squid Analysis Report Generator
ID: squid-analysis-report-generator
Severity: high
Author: geeknik
Tags: sarg,exposure,logs
Description
Section titled “Description”SARG is an open source tool that allows you to analyse the squid log files and generates beautiful reports in HTML format with information about users, IP addresses, top accessed sites, total bandwidth usage, elapsed time, downloads, access denied websites, daily reports, weekly reports and monthly reports.
YAML Source
Section titled “YAML Source”id: squid-analysis-report-generator
info: name: Squid Analysis Report Generator author: geeknik severity: high description: SARG is an open source tool that allows you to analyse the squid log files and generates beautiful reports in HTML format with information about users, IP addresses, top accessed sites, total bandwidth usage, elapsed time, downloads, access denied websites, daily reports, weekly reports and monthly reports. reference: - https://sourceforge.net/projects/sarg/ metadata: max-request: 1 tags: sarg,exposure,logs
http: - method: GET path: - "{{BaseURL}}"
matchers-condition: and matchers: - type: word part: body words: - "Squid User Access Report" - "Squid User's Access Report" condition: or
- type: word part: body words: - "<td>Daily reports" - "FILE/PERIOD" condition: or
extractors: - type: regex part: body regex: - sarg-[0-99].[0-99].[0-99]# digest: 490a00463044022046b58e066db8aa9a4e4113339ce5768fef0aa2be4c8c97738f0ae1b33c98d81102207d5e9336faef629aedd6c420d3536de60119549c160524ae1eaef99df0ab0321:922c64590222798bb761d5b6d8e72950Guide to check the vulnerabilities
Section titled “Guide to check the vulnerabilities”This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.
$ nuclei -u "URL" -t "http/exposures/logs/squid-analysis-report-generator.yaml"