Raspberry Shake Config Detection
ID: raspberry-shake-config
Severity: medium
Author: pussycat0x
Tags: misconfig,unauth,iot,raspberry
Description
Section titled “Description”The Shake Board digitizer receives, processes, and interprets the sensor data in real-time, allowing for the Raspberry Pi computer to export the data for easy access. The data output can be displayed and analyzed using our own comprehensive set of web tools or any standard seismological software.
YAML Source
Section titled “YAML Source”id: raspberry-shake-config
info: name: Raspberry Shake Config Detection author: pussycat0x severity: medium description: | The Shake Board digitizer receives, processes, and interprets the sensor data in real-time, allowing for the Raspberry Pi computer to export the data for easy access. The data output can be displayed and analyzed using our own comprehensive set of web tools or any standard seismological software. metadata: verified: true max-request: 1 shodan-query: title:"Raspberry Shake Config" tags: misconfig,unauth,iot,raspberry
http: - method: GET path: - "{{BaseURL}}"
matchers-condition: and matchers: - type: word part: body words: - "Raspberry Shake Config"
- type: status status: - 200# digest: 4a0a00473045022008df094eaed4e7acda6f8ac8215b5e0a56acc945aa5e5a9975f730f2a83aa41d022100cf5530a853f660a8a7939f4c4867b3c8a24d8363db1ec6c03af028b0d50420c9:922c64590222798bb761d5b6d8e72950Guide to check the vulnerabilities
Section titled “Guide to check the vulnerabilities”This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.
$ nuclei -u "URL" -t "http/iot/raspberry-shake-config.yaml"