Template Syntax

Here is an example of a template that performs a path traversal to access the CRXDE Panel

{
  "requests": {
    "path": "/content/..;/crx/de/index.jsp",
    "method": "GET"
  },
  "responses": {
    "matchers-condition": "and",
    "matchers": [
      {
        "type": "word",
        "words": ["CRXDE Lite"]
      },
      {
        "type": "status",
        "status": [200]
      }
    ]
  }
}

Requests

path

string

required

The http path

method

string

required

The http method

headers

array

Show properties

name

string

The header name

value

string

The header value

Responses

matchers-condition

string

required

The matcher condition:

and will make sure all matches are true for a valid finding
or will make sure one or more matches are true for a valid finding

matchers

array

Show properties

type: status

string

status

number

the status code to match

type: word

string

words

string

the text to search for in the response body

Get Started

Security Testing

Template Syntax

Requests

Responses

Get Started

Security Testing

​Requests

​Responses

Requests

Responses