AWS Cloudfront service detection

ID: aws-cloudfront-service

Severity: info

Author: jiheon-dev

Tags: aws,tech,service

Description

Detect websites using AWS cloudfront service

YAML Source

id: aws-cloudfront-service

info:
  name: AWS Cloudfront service detection
  author: jiheon-dev
  severity: info
  description: Detect websites using AWS cloudfront service
  metadata:
    max-request: 1
  tags: aws,tech,service

http:
  - method: GET
    path:
      - "{{BaseURL}}"

    matchers:
      - type: dsl
        condition: or
        dsl:
          - "contains(tolower(header), 'x-cache: hit from cloudfront')"
          - "contains(tolower(header), 'x-cache: refreshhit from cloudfront')"
          - "contains(tolower(header), 'x-cache: miss from cloudfront')"
          - "contains(tolower(header), 'x-cache: error from cloudfront')"
# digest: 4b0a00483046022100f0f0cc2b17a54916cdc26ad3ecb15e6384bd0e7e8286385b7398cb4d9ee1a028022100ecedeea45f03b1020840a9ad5806547551e786421fa751d1969855df70238215:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

$ nuclei -u "URL" -t "http/technologies/aws/aws-cloudfront-service.yaml"

View on Github