recog 2.3.17 → 2.3.21
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.github/workflows/ci.yml +26 -0
- data/bin/recog_standardize +6 -0
- data/cpe-remap.yaml +342 -200
- data/identifiers/README.md +24 -10
- data/identifiers/fields.txt +104 -0
- data/identifiers/hw_device.txt +2 -0
- data/identifiers/hw_family.txt +11 -0
- data/identifiers/hw_product.txt +71 -0
- data/identifiers/os_device.txt +2 -1
- data/identifiers/os_family.txt +2 -0
- data/identifiers/os_product.txt +36 -8
- data/identifiers/service_family.txt +10 -1
- data/identifiers/service_product.txt +78 -2
- data/identifiers/vendor.txt +55 -0
- data/lib/recog/nizer.rb +1 -82
- data/lib/recog/version.rb +1 -1
- data/requirements.txt +1 -1
- data/update_cpes.py +18 -5
- data/xml/apache_modules.xml +60 -0
- data/xml/apache_os.xml +1 -1
- data/xml/dns_versionbind.xml +11 -1
- data/xml/favicons.xml +122 -3
- data/xml/ftp_banners.xml +62 -51
- data/xml/html_title.xml +553 -41
- data/xml/http_cookies.xml +262 -61
- data/xml/http_servers.xml +478 -108
- data/xml/http_wwwauth.xml +36 -9
- data/xml/imap_banners.xml +5 -5
- data/xml/ldap_searchresult.xml +1 -0
- data/xml/mdns_device-info_txt.xml +340 -10
- data/xml/mysql_banners.xml +2 -1
- data/xml/nntp_banners.xml +1 -1
- data/xml/ntp_banners.xml +16 -2
- data/xml/operating_system.xml +4 -4
- data/xml/pop_banners.xml +4 -4
- data/xml/rtsp_servers.xml +7 -0
- data/xml/sip_banners.xml +347 -9
- data/xml/sip_user_agents.xml +323 -4
- data/xml/smb_native_lm.xml +32 -1
- data/xml/smb_native_os.xml +160 -33
- data/xml/smtp_banners.xml +167 -128
- data/xml/smtp_expn.xml +1 -0
- data/xml/smtp_vrfy.xml +1 -0
- data/xml/snmp_sysdescr.xml +205 -36
- data/xml/ssh_banners.xml +139 -25
- data/xml/telnet_banners.xml +92 -48
- data/xml/tls_jarm.xml +140 -0
- data/xml/x509_issuers.xml +201 -2
- data/xml/x509_subjects.xml +251 -32
- metadata +5 -2
data/xml/html_title.xml
CHANGED
@@ -1,25 +1,80 @@
|
|
1
1
|
<?xml version='1.0' encoding='UTF-8'?>
|
2
|
-
<fingerprints matches="html_title" database_type="service" preference="0.90">
|
2
|
+
<fingerprints matches="html_title" protocol="http" database_type="service" preference="0.90">
|
3
3
|
<!-- HTML Title elements found in HTTP response bodies are matched against these patterns to fingerprint HTTP servers. -->
|
4
4
|
|
5
5
|
<fingerprint pattern="^301 Moved Permanently$">
|
6
6
|
<description>301 Moved Permanently - generic -- assert nothing.</description>
|
7
7
|
<example>301 Moved Permanently</example>
|
8
|
+
<param pos="0" name="hw.certainty" value="0.0"/>
|
9
|
+
<param pos="0" name="os.certainty" value="0.0"/>
|
10
|
+
<param pos="0" name="service.certainty" value="0.0"/>
|
11
|
+
</fingerprint>
|
12
|
+
|
13
|
+
<fingerprint pattern="^302 Found$">
|
14
|
+
<description>302 Found - generic -- assert nothing.</description>
|
15
|
+
<example>302 Found</example>
|
16
|
+
<param pos="0" name="hw.certainty" value="0.0"/>
|
17
|
+
<param pos="0" name="os.certainty" value="0.0"/>
|
18
|
+
<param pos="0" name="service.certainty" value="0.0"/>
|
8
19
|
</fingerprint>
|
9
20
|
|
10
21
|
<fingerprint pattern="^400 Bad Request$">
|
11
22
|
<description>400 Bad Request - generic -- assert nothing.</description>
|
12
23
|
<example>400 Bad Request</example>
|
24
|
+
<param pos="0" name="hw.certainty" value="0.0"/>
|
25
|
+
<param pos="0" name="os.certainty" value="0.0"/>
|
26
|
+
<param pos="0" name="service.certainty" value="0.0"/>
|
13
27
|
</fingerprint>
|
14
28
|
|
15
29
|
<fingerprint pattern="^401 Unauthorized$">
|
16
30
|
<description>401 Unauthorized - generic -- assert nothing.</description>
|
17
31
|
<example>401 Unauthorized</example>
|
32
|
+
<param pos="0" name="hw.certainty" value="0.0"/>
|
33
|
+
<param pos="0" name="os.certainty" value="0.0"/>
|
34
|
+
<param pos="0" name="service.certainty" value="0.0"/>
|
18
35
|
</fingerprint>
|
19
36
|
|
20
|
-
<fingerprint pattern="^
|
37
|
+
<fingerprint pattern="^403 Forbidden$">
|
38
|
+
<description>403 Forbidden - generic -- assert nothing.</description>
|
39
|
+
<example>403 Forbidden</example>
|
40
|
+
<param pos="0" name="hw.certainty" value="0.0"/>
|
41
|
+
<param pos="0" name="os.certainty" value="0.0"/>
|
42
|
+
<param pos="0" name="service.certainty" value="0.0"/>
|
43
|
+
</fingerprint>
|
44
|
+
|
45
|
+
<fingerprint pattern="^(?:404 )?Not Found$">
|
21
46
|
<description>404 Not Found - generic -- assert nothing.</description>
|
22
47
|
<example>404 Not Found</example>
|
48
|
+
<example>Not Found</example>
|
49
|
+
<param pos="0" name="hw.certainty" value="0.0"/>
|
50
|
+
<param pos="0" name="os.certainty" value="0.0"/>
|
51
|
+
<param pos="0" name="service.certainty" value="0.0"/>
|
52
|
+
</fingerprint>
|
53
|
+
|
54
|
+
<fingerprint pattern="^Invalid URL$">
|
55
|
+
<description>Invalid URL - generic -- assert nothing.</description>
|
56
|
+
<example>Invalid URL</example>
|
57
|
+
<param pos="0" name="hw.certainty" value="0.0"/>
|
58
|
+
<param pos="0" name="os.certainty" value="0.0"/>
|
59
|
+
<param pos="0" name="service.certainty" value="0.0"/>
|
60
|
+
</fingerprint>
|
61
|
+
|
62
|
+
<fingerprint pattern="^ERROR: The request could not be satisfied$">
|
63
|
+
<description>Amazon CloudFront web load balancer endpoint</description>
|
64
|
+
<example>ERROR: The request could not be satisfied</example>
|
65
|
+
<param pos="0" name="service.vendor" value="Amazon"/>
|
66
|
+
<param pos="0" name="service.family" value="CloudFront"/>
|
67
|
+
<param pos="0" name="service.product" value="CloudFront Load Balancer"/>
|
68
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:amazon:amazon_cloudfront:-"/>
|
69
|
+
</fingerprint>
|
70
|
+
|
71
|
+
<fingerprint pattern="^Microsoft Azure Web App - Error 404$">
|
72
|
+
<description>Microsoft Azure Web App - Error 404</description>
|
73
|
+
<example>Microsoft Azure Web App - Error 404</example>
|
74
|
+
<param pos="0" name="service.vendor" value="Microsoft"/>
|
75
|
+
<param pos="0" name="service.family" value="Azure"/>
|
76
|
+
<param pos="0" name="service.product" value="Azure App Service on Azure Stack"/>
|
77
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:microsoft:azure_app_service_on_azure_stack:-"/>
|
23
78
|
</fingerprint>
|
24
79
|
|
25
80
|
<fingerprint pattern="^Index of /">
|
@@ -103,9 +158,10 @@
|
|
103
158
|
<param pos="0" name="service.cpe23" value="cpe:/a:apache:tomcat:-"/>
|
104
159
|
</fingerprint>
|
105
160
|
|
106
|
-
<fingerprint pattern="^Apache Tomcat/(\S+)
|
161
|
+
<fingerprint pattern="^Apache Tomcat/(\S+)(?: - Error report)?$">
|
107
162
|
<description>Apache tomcat with minimal version information</description>
|
108
163
|
<example service.version="8.0.32">Apache Tomcat/8.0.32</example>
|
164
|
+
<example service.version="5.5.29">Apache Tomcat/5.5.29 - Error report</example>
|
109
165
|
<param pos="0" name="service.vendor" value="Apache"/>
|
110
166
|
<param pos="0" name="service.product" value="Tomcat"/>
|
111
167
|
<param pos="0" name="service.family" value="Tomcat"/>
|
@@ -113,6 +169,32 @@
|
|
113
169
|
<param pos="0" name="service.cpe23" value="cpe:/a:apache:tomcat:{service.version}"/>
|
114
170
|
</fingerprint>
|
115
171
|
|
172
|
+
<fingerprint pattern="^Apache Tomcat/(\S+) \(Ubuntu\) - Error report$">
|
173
|
+
<description>Apache Tomcat - Error report on Ubuntu</description>
|
174
|
+
<example service.version="8.0.32">Apache Tomcat/8.0.32 (Ubuntu) - Error report</example>
|
175
|
+
<param pos="0" name="service.vendor" value="Apache"/>
|
176
|
+
<param pos="0" name="service.product" value="Tomcat"/>
|
177
|
+
<param pos="0" name="service.family" value="Tomcat"/>
|
178
|
+
<param pos="1" name="service.version"/>
|
179
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:apache:tomcat:{service.version}"/>
|
180
|
+
<param pos="0" name="os.vendor" value="Ubuntu"/>
|
181
|
+
<param pos="0" name="os.product" value="Linux"/>
|
182
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:canonical:ubuntu_linux:-"/>
|
183
|
+
</fingerprint>
|
184
|
+
|
185
|
+
<fingerprint pattern="^Apache Tomcat/(\S+) \(Debian\) - Error report$">
|
186
|
+
<description>Apache Tomcat - Error report on Debian</description>
|
187
|
+
<example service.version="7.0.56">Apache Tomcat/7.0.56 (Debian) - Error report</example>
|
188
|
+
<param pos="0" name="service.vendor" value="Apache"/>
|
189
|
+
<param pos="0" name="service.product" value="Tomcat"/>
|
190
|
+
<param pos="0" name="service.family" value="Tomcat"/>
|
191
|
+
<param pos="1" name="service.version"/>
|
192
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:apache:tomcat:{service.version}"/>
|
193
|
+
<param pos="0" name="os.vendor" value="Debian"/>
|
194
|
+
<param pos="0" name="os.product" value="Linux"/>
|
195
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:debian:debian_linux:-"/>
|
196
|
+
</fingerprint>
|
197
|
+
|
116
198
|
<fingerprint pattern="^AiCloud">
|
117
199
|
<description>ASUS AiCloud</description>
|
118
200
|
<example>AiCloud</example>
|
@@ -255,6 +337,7 @@
|
|
255
337
|
<param pos="0" name="hw.vendor" value="Philips"/>
|
256
338
|
<param pos="0" name="hw.product" value="Hue"/>
|
257
339
|
<param pos="0" name="hw.device" value="Light Bulb"/>
|
340
|
+
<param pos="0" name="hw.cpe23" value="cpe:/h:philips:hue:-"/>
|
258
341
|
</fingerprint>
|
259
342
|
|
260
343
|
<fingerprint pattern="LANDesk\(R\) Management Agent$">
|
@@ -291,7 +374,7 @@
|
|
291
374
|
<param pos="0" name="os.cpe23" value="cpe:/o:microsoft:windows:-"/>
|
292
375
|
</fingerprint>
|
293
376
|
|
294
|
-
<fingerprint pattern="
|
377
|
+
<fingerprint pattern="(?i)^Default (?:Parallels )?Plesk (?:Panel )?Page$">
|
295
378
|
<description>Plesk web hosting platform with no version</description>
|
296
379
|
<example>Default Parallels Plesk Panel Page</example>
|
297
380
|
<example>Default Parallels Plesk Page</example>
|
@@ -301,6 +384,14 @@
|
|
301
384
|
<param pos="0" name="service.cpe23" value="cpe:/a:parallels:parallels_plesk_panel:-"/>
|
302
385
|
</fingerprint>
|
303
386
|
|
387
|
+
<fingerprint pattern="^Sage X3$">
|
388
|
+
<description>Sage X3 Syracuse Web Server</description>
|
389
|
+
<example>Sage X3</example>
|
390
|
+
<param pos="0" name="service.vendor" value="Sage"/>
|
391
|
+
<param pos="0" name="service.family" value="Sage X3 Syracuse Web Server"/>
|
392
|
+
<param pos="0" name="service.product" value="Sage X3 Syracuse Web Server"/>
|
393
|
+
</fingerprint>
|
394
|
+
|
304
395
|
<fingerprint pattern="^Web Viewer for Samsung DVR$">
|
305
396
|
<description>Samsung DVRs</description>
|
306
397
|
<example>Web Viewer for Samsung DVR</example>
|
@@ -308,15 +399,41 @@
|
|
308
399
|
<param pos="0" name="hw.device" value="DVR"/>
|
309
400
|
</fingerprint>
|
310
401
|
|
311
|
-
<fingerprint pattern="
|
402
|
+
<fingerprint pattern="(?i)^(?:Dell )?Sonicwall - Authentication$">
|
312
403
|
<description>Sonicwall firewalls</description>
|
313
404
|
<example>SonicWall - Authentication</example>
|
314
405
|
<param pos="0" name="os.vendor" value="SonicWall"/>
|
315
406
|
<param pos="0" name="os.device" value="Firewall"/>
|
316
407
|
<param pos="0" name="os.family" value="SonicOS"/>
|
408
|
+
<param pos="0" name="os.product" value="SonicOS"/>
|
409
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:sonicwall:sonicos:-"/>
|
410
|
+
</fingerprint>
|
411
|
+
|
412
|
+
<fingerprint pattern="^SonicWall Universal Management Suite v(\d+\.\d+)$">
|
413
|
+
<description>SonicWall Universal Management Appliance - with version</description>
|
414
|
+
<example service.version="8.7">SonicWall Universal Management Suite v8.7</example>
|
415
|
+
<param pos="0" name="service.vendor" value="SonicWall"/>
|
416
|
+
<param pos="0" name="service.product" value="Universal Management Appliance"/>
|
417
|
+
<param pos="1" name="service.version"/>
|
418
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:sonicwall:universal_management_appliance:{service.version}"/>
|
419
|
+
<param pos="0" name="os.vendor" value="SonicWall"/>
|
420
|
+
<param pos="0" name="os.family" value="SonicOS"/>
|
421
|
+
<param pos="0" name="os.product" value="SonicOS"/>
|
422
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:sonicwall:sonicos:-"/>
|
423
|
+
</fingerprint>
|
424
|
+
|
425
|
+
<fingerprint pattern="^Fireware XTM User Authentication$">
|
426
|
+
<description>WatchGuard Fireware XTM login page</description>
|
427
|
+
<example>Fireware XTM User Authentication</example>
|
428
|
+
<param pos="0" name="service.vendor" value="WatchGuard"/>
|
429
|
+
<param pos="0" name="service.product" value="Fireware XTM"/>
|
430
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:watchguard:fireware_xtm:-"/>
|
431
|
+
<param pos="0" name="os.vendor" value="WatchGuard"/>
|
432
|
+
<param pos="0" name="os.product" value="Fireware"/>
|
433
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:watchguard:fireware:-"/>
|
317
434
|
</fingerprint>
|
318
435
|
|
319
|
-
<fingerprint pattern="^(
|
436
|
+
<fingerprint pattern="^(.{0,512}).nbsp;-.nbsp;Synology.nbsp;DiskStation$">
|
320
437
|
<description>Synology DiskStation</description>
|
321
438
|
<example host.name="DiskStation">DiskStation&nbsp;-&nbsp;Synology&nbsp;DiskStation</example>
|
322
439
|
<example host.name="DS218">DS218&nbsp;-&nbsp;Synology&nbsp;DiskStation</example>
|
@@ -334,6 +451,10 @@
|
|
334
451
|
<description>Synology with WebStation web hosting</description>
|
335
452
|
<example>Hello! Welcome to Synology Web Station!</example>
|
336
453
|
<example>Hallo! Herzlich Willkommen bei Synology Web Station!</example>
|
454
|
+
<param pos="0" name="service.vendor" value="Synology"/>
|
455
|
+
<param pos="0" name="service.family" value="Diskstation"/>
|
456
|
+
<param pos="0" name="service.product" value="Web Station"/>
|
457
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:synology:web_station:-"/>
|
337
458
|
<param pos="0" name="hw.vendor" value="Synology"/>
|
338
459
|
<param pos="0" name="hw.family" value="DiskStation"/>
|
339
460
|
<param pos="0" name="hw.device" value="NAS"/>
|
@@ -428,6 +549,50 @@
|
|
428
549
|
<param pos="0" name="hw.device" value="DVR"/>
|
429
550
|
</fingerprint>
|
430
551
|
|
552
|
+
<!-- Various products by Zyxel -->
|
553
|
+
|
554
|
+
<fingerprint pattern="^USG60$">
|
555
|
+
<description>Zyxel USG60 Unified Security Gateway</description>
|
556
|
+
<example>USG60</example>
|
557
|
+
<param pos="0" name="os.vendor" value="Zyxel"/>
|
558
|
+
<param pos="0" name="os.product" value="USG60 firmware"/>
|
559
|
+
<param pos="0" name="os.device" value="Firewall"/>
|
560
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:zyxel:usg60_firmware:-"/>
|
561
|
+
<param pos="0" name="hw.vendor" value="Zyxel"/>
|
562
|
+
<param pos="0" name="hw.family" value="Unified Security Gateway"/>
|
563
|
+
<param pos="0" name="hw.product" value="USG60"/>
|
564
|
+
<param pos="0" name="hw.device" value="Firewall"/>
|
565
|
+
<param pos="0" name="hw.cpe23" value="cpe:/h:zyxel:usg60:-"/>
|
566
|
+
</fingerprint>
|
567
|
+
|
568
|
+
<fingerprint pattern="^USG40$">
|
569
|
+
<description>Zyxel USG40 Unified Security Gateway</description>
|
570
|
+
<example>USG40</example>
|
571
|
+
<param pos="0" name="os.vendor" value="Zyxel"/>
|
572
|
+
<param pos="0" name="os.product" value="USG40 firmware"/>
|
573
|
+
<param pos="0" name="os.device" value="Firewall"/>
|
574
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:zyxel:usg40_firmware:-"/>
|
575
|
+
<param pos="0" name="hw.vendor" value="Zyxel"/>
|
576
|
+
<param pos="0" name="hw.family" value="Unified Security Gateway"/>
|
577
|
+
<param pos="0" name="hw.product" value="USG40"/>
|
578
|
+
<param pos="0" name="hw.device" value="Firewall"/>
|
579
|
+
<param pos="0" name="hw.cpe23" value="cpe:/h:zyxel:usg40:-"/>
|
580
|
+
</fingerprint>
|
581
|
+
|
582
|
+
<fingerprint pattern="^USG20-VPN$">
|
583
|
+
<description>Zyxel USG20-VPN Unified Security Gateway</description>
|
584
|
+
<example>USG20-VPN</example>
|
585
|
+
<param pos="0" name="os.vendor" value="Zyxel"/>
|
586
|
+
<param pos="0" name="os.product" value="USG20-VPN firmware"/>
|
587
|
+
<param pos="0" name="os.device" value="Firewall"/>
|
588
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:zyxel:usg20-vpn_firmware:-"/>
|
589
|
+
<param pos="0" name="hw.vendor" value="Zyxel"/>
|
590
|
+
<param pos="0" name="hw.family" value="Unified Security Gateway"/>
|
591
|
+
<param pos="0" name="hw.product" value="USG20-VPN"/>
|
592
|
+
<param pos="0" name="hw.device" value="Firewall"/>
|
593
|
+
<param pos="0" name="hw.cpe23" value="cpe:/h:zyxel:usg20-vpn:-"/>
|
594
|
+
</fingerprint>
|
595
|
+
|
431
596
|
<fingerprint pattern="^RomPager Embedded Web Server Toolkit$">
|
432
597
|
<description>Embedded HTTP server used by many vendors and device
|
433
598
|
types, including APC, 3Com, Andover Controls, Cisco VoIP, D-Link,
|
@@ -439,6 +604,18 @@
|
|
439
604
|
<param pos="0" name="service.product" value="RomPager"/>
|
440
605
|
</fingerprint>
|
441
606
|
|
607
|
+
<fingerprint pattern="^Wowza Streaming Engine 4 (Subscription|Perpetual Pro) Edition (\d\.[\w.]+) build(\d+)$">
|
608
|
+
<description>Wowza Streaming Engine</description>
|
609
|
+
<example service.version="4.7.7.01" service.version.version="20190222144406">Wowza Streaming Engine 4 Subscription Edition 4.7.7.01 build20190222144406</example>
|
610
|
+
<example service.edition="Perpetual Pro">Wowza Streaming Engine 4 Perpetual Pro Edition 4.8.8.01 build20201216140014</example>
|
611
|
+
<param pos="0" name="service.vendor" value="Wowza"/>
|
612
|
+
<param pos="0" name="service.product" value="Streaming Engine"/>
|
613
|
+
<param pos="1" name="service.edition"/>
|
614
|
+
<param pos="2" name="service.version"/>
|
615
|
+
<param pos="3" name="service.version.version"/>
|
616
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:wowza:streaming_engine:{service.version}"/>
|
617
|
+
</fingerprint>
|
618
|
+
|
442
619
|
<fingerprint pattern="^RouterOS router configuration page$">
|
443
620
|
<description>MikroTik RouterOS router configuration page</description>
|
444
621
|
<example>RouterOS router configuration page</example>
|
@@ -534,12 +711,16 @@
|
|
534
711
|
<fingerprint pattern="^Netgear Prosafe Plus Switch$">
|
535
712
|
<description>Netgear Prosafe Plus Switch</description>
|
536
713
|
<example>Netgear Prosafe Plus Switch</example>
|
714
|
+
<param pos="0" name="os.vendor" value="Netgear"/>
|
715
|
+
<param pos="0" name="os.device" value="Switch"/>
|
716
|
+
<param pos="0" name="os.product" value="Prosafe Firmware"/>
|
717
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:netgear:prosafe_firmware:-"/>
|
537
718
|
<param pos="0" name="hw.vendor" value="Netgear"/>
|
538
719
|
<param pos="0" name="hw.device" value="Switch"/>
|
539
720
|
<param pos="0" name="hw.product" value="Prosafe Plus"/>
|
540
721
|
</fingerprint>
|
541
722
|
|
542
|
-
<fingerprint pattern="^(
|
723
|
+
<fingerprint pattern="^(.{0,256}).nbsp;Configuration and Management$">
|
543
724
|
<description>Digi Terminal Servers</description>
|
544
725
|
<example hw.product="Digi One SP">Digi One SP&nbsp;Configuration and Management</example>
|
545
726
|
<example hw.product="PortServer TS 4">PortServer TS 4&nbsp;Configuration and Management</example>
|
@@ -595,6 +776,14 @@
|
|
595
776
|
<param pos="0" name="hw.product" value="Lantick Ethernet Relay Controller"/>
|
596
777
|
</fingerprint>
|
597
778
|
|
779
|
+
<fingerprint pattern="^XYTRONIX Relay$">
|
780
|
+
<description>Xytronix Relay</description>
|
781
|
+
<example>XYTRONIX Relay</example>
|
782
|
+
<param pos="0" name="hw.vendor" value="Xytronix"/>
|
783
|
+
<param pos="0" name="hw.device" value="Relay Controller"/>
|
784
|
+
<param pos="0" name="hw.product" value="Ethernet Relay Controller"/>
|
785
|
+
</fingerprint>
|
786
|
+
|
598
787
|
<fingerprint pattern="^(myUTN(?:-[a-zA-Z0-9]+)?) Control Center$">
|
599
788
|
<description>myUTN Device Server</description>
|
600
789
|
<example hw.product="myUTN-50a">myUTN-50a Control Center</example>
|
@@ -652,7 +841,7 @@
|
|
652
841
|
<param pos="0" name="hw.product" value="Rack PDU Card"/>
|
653
842
|
</fingerprint>
|
654
843
|
|
655
|
-
<fingerprint pattern="^(
|
844
|
+
<fingerprint pattern="^(.{0,256}) IntelliSlot Web(?:/\d+)? Card?$">
|
656
845
|
<description>Emerson Network Power IntelliSlot Web Card and rebrands</description>
|
657
846
|
<example hw.vendor="Emerson Network Power">Emerson Network Power IntelliSlot Web Card</example>
|
658
847
|
<example hw.vendor="Emerson Network Power">Emerson Network Power IntelliSlot Web/485 Card</example>
|
@@ -798,11 +987,12 @@
|
|
798
987
|
<param pos="0" name="hw.device" value="Lights Out Management"/>
|
799
988
|
<param pos="0" name="hw.vendor" value="HP"/>
|
800
989
|
<param pos="0" name="hw.product" value="iLO"/>
|
801
|
-
<param pos="0" name="hw.cpe23" value="cpe:/h:hp:
|
990
|
+
<param pos="0" name="hw.cpe23" value="cpe:/h:hp:integrated_lights-out:-"/>
|
802
991
|
<param pos="0" name="os.vendor" value="HP"/>
|
803
992
|
<param pos="0" name="os.device" value="Lights Out Management"/>
|
804
993
|
<param pos="0" name="os.family" value="iLO"/>
|
805
994
|
<param pos="0" name="os.product" value="iLO"/>
|
995
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:hp:integrated_lights-out_firmware:-"/>
|
806
996
|
</fingerprint>
|
807
997
|
|
808
998
|
<fingerprint pattern="^HP Integrated Lights-Out 2$">
|
@@ -811,24 +1001,38 @@
|
|
811
1001
|
<param pos="0" name="hw.device" value="Lights Out Management"/>
|
812
1002
|
<param pos="0" name="hw.vendor" value="HP"/>
|
813
1003
|
<param pos="0" name="hw.product" value="iLO"/>
|
814
|
-
<param pos="0" name="hw.cpe23" value="cpe:/h:hp:
|
1004
|
+
<param pos="0" name="hw.cpe23" value="cpe:/h:hp:integrated_lights-out:-"/>
|
815
1005
|
<param pos="0" name="os.vendor" value="HP"/>
|
816
1006
|
<param pos="0" name="os.device" value="Lights Out Management"/>
|
817
1007
|
<param pos="0" name="os.family" value="iLO"/>
|
818
1008
|
<param pos="0" name="os.product" value="iLO 2"/>
|
1009
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:hp:integrated_lights-out_2_firmware:-"/>
|
819
1010
|
</fingerprint>
|
820
1011
|
|
821
|
-
<fingerprint pattern="^
|
822
|
-
<description>HP Integrated Lights-Out 3
|
823
|
-
<example
|
824
|
-
<example hw.product="iLO 4" os.product="iLO 4">iLO 4</example>
|
1012
|
+
<fingerprint pattern="^iLO 3$">
|
1013
|
+
<description>HP Integrated Lights-Out 3</description>
|
1014
|
+
<example>iLO 3</example>
|
825
1015
|
<param pos="0" name="hw.device" value="Lights Out Management"/>
|
826
1016
|
<param pos="0" name="hw.vendor" value="HP"/>
|
827
|
-
<param pos="
|
1017
|
+
<param pos="0" name="hw.product" value="iLO 3"/>
|
828
1018
|
<param pos="0" name="os.vendor" value="HP"/>
|
829
1019
|
<param pos="0" name="os.device" value="Lights Out Management"/>
|
830
1020
|
<param pos="0" name="os.family" value="iLO"/>
|
831
|
-
<param pos="
|
1021
|
+
<param pos="0" name="os.product" value="iLO 3"/>
|
1022
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:hp:integrated_lights-out_3_firmware:-"/>
|
1023
|
+
</fingerprint>
|
1024
|
+
|
1025
|
+
<fingerprint pattern="^iLO 4$">
|
1026
|
+
<description>HP Integrated Lights-Out 4</description>
|
1027
|
+
<example>iLO 4</example>
|
1028
|
+
<param pos="0" name="hw.device" value="Lights Out Management"/>
|
1029
|
+
<param pos="0" name="hw.vendor" value="HP"/>
|
1030
|
+
<param pos="0" name="hw.product" value="iLO 4"/>
|
1031
|
+
<param pos="0" name="os.vendor" value="HP"/>
|
1032
|
+
<param pos="0" name="os.device" value="Lights Out Management"/>
|
1033
|
+
<param pos="0" name="os.family" value="iLO"/>
|
1034
|
+
<param pos="0" name="os.product" value="iLO 4"/>
|
1035
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:hp:integrated_lights-out_4_firmware:-"/>
|
832
1036
|
</fingerprint>
|
833
1037
|
|
834
1038
|
<fingerprint pattern="^HPE SimpliVity OmniStack$">
|
@@ -855,7 +1059,7 @@
|
|
855
1059
|
<param pos="0" name="hw.product" value="OpenManage Switch"/>
|
856
1060
|
</fingerprint>
|
857
1061
|
|
858
|
-
<fingerprint pattern="^(\S
|
1062
|
+
<fingerprint pattern="^(\S{1,512})\s{1,8}-\s{1,8}ProCurve Switch (\S+) \((.*)\)$">
|
859
1063
|
<description>HPE ProCurve Switch w/Hostname</description>
|
860
1064
|
<example host.name="SW1" hw.product="4204vl" procurve.model="J8770A">SW1 - ProCurve Switch 4204vl (J8770A)</example>
|
861
1065
|
<param pos="0" name="hw.vendor" value="HPE"/>
|
@@ -951,20 +1155,22 @@
|
|
951
1155
|
|
952
1156
|
<fingerprint pattern="^Agilent 33220A \((.*)\)$">
|
953
1157
|
<description>Agilent 33220A</description>
|
954
|
-
<example agilent.serial="MY44041111">Agilent 33220A (MY44041111)</example>
|
1158
|
+
<example agilent.serial="MY44041111" hw.serial_number="MY44041111">Agilent 33220A (MY44041111)</example>
|
955
1159
|
<param pos="0" name="hw.vendor" value="Agilent"/>
|
956
1160
|
<param pos="0" name="hw.device" value="Test Instrument"/>
|
957
1161
|
<param pos="0" name="hw.product" value="33220A Waveform Generator"/>
|
958
1162
|
<param pos="1" name="agilent.serial"/>
|
1163
|
+
<param pos="1" name="hw.serial_number"/>
|
959
1164
|
</fingerprint>
|
960
1165
|
|
961
1166
|
<fingerprint pattern="^Agilent N5172B (?:EXG )?(MY\S+)$">
|
962
1167
|
<description>Agilent N5172B</description>
|
963
|
-
<example agilent.serial="MY44041111">Agilent N5172B EXG MY44041111</example>
|
1168
|
+
<example agilent.serial="MY44041111" hw.serial_number="MY44041111">Agilent N5172B EXG MY44041111</example>
|
964
1169
|
<param pos="0" name="hw.vendor" value="Agilent"/>
|
965
1170
|
<param pos="0" name="hw.device" value="Test Instrument"/>
|
966
1171
|
<param pos="0" name="hw.product" value="N5172B Signal Generator"/>
|
967
1172
|
<param pos="1" name="agilent.serial"/>
|
1173
|
+
<param pos="1" name="hw.serial_number"/>
|
968
1174
|
</fingerprint>
|
969
1175
|
|
970
1176
|
<fingerprint pattern="^Polycom - Configuration Utility$">
|
@@ -984,6 +1190,14 @@
|
|
984
1190
|
<param pos="0" name="hw.device" value="VoIP"/>
|
985
1191
|
</fingerprint>
|
986
1192
|
|
1193
|
+
<fingerprint pattern="^3CX Phone System Management Console$">
|
1194
|
+
<description>3CX Phone System Management Console</description>
|
1195
|
+
<example>3CX Phone System Management Console</example>
|
1196
|
+
<param pos="0" name="service.vendor" value="3CX"/>
|
1197
|
+
<param pos="0" name="service.product" value="3CX Web Server"/>
|
1198
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:3cx:3cx_web_server:-"/>
|
1199
|
+
</fingerprint>
|
1200
|
+
|
987
1201
|
<fingerprint pattern="^(SPA\S+) Configuration Utility$">
|
988
1202
|
<description>Cisco IP Phone - SPA504G Configuration Utility</description>
|
989
1203
|
<example hw.product="SPA504G">SPA504G Configuration Utility</example>
|
@@ -1048,7 +1262,6 @@
|
|
1048
1262
|
<param pos="0" name="os.device" value="Switch"/>
|
1049
1263
|
<param pos="0" name="os.product" value="MDS 9000"/>
|
1050
1264
|
<param pos="1" name="os.version"/>
|
1051
|
-
<param pos="0" name="os.cpe23" value="cpe:/o:cisco:mds_9000:{os.version}"/>
|
1052
1265
|
</fingerprint>
|
1053
1266
|
|
1054
1267
|
<fingerprint pattern="^Stealthwatch Management Console$">
|
@@ -1102,7 +1315,7 @@
|
|
1102
1315
|
<param pos="0" name="os.vendor" value="Cisco"/>
|
1103
1316
|
<param pos="0" name="os.device" value="Wireless Controller"/>
|
1104
1317
|
<param pos="0" name="os.product" value="Wireless LAN Controller"/>
|
1105
|
-
<param pos="0" name="os.cpe23" value="cpe:/o:cisco:
|
1318
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:cisco:wireless_lan_controller_software:-"/>
|
1106
1319
|
<param pos="0" name="hw.vendor" value="Cisco"/>
|
1107
1320
|
<param pos="0" name="hw.device" value="Wireless Controller"/>
|
1108
1321
|
<param pos="0" name="hw.product" value="Wireless LAN Controller"/>
|
@@ -1207,6 +1420,7 @@
|
|
1207
1420
|
<param pos="0" name="hw.vendor" value="KACE"/>
|
1208
1421
|
<param pos="0" name="hw.device" value="Support Appliance"/>
|
1209
1422
|
<param pos="0" name="hw.product" value="K1000"/>
|
1423
|
+
<param pos="0" name="hw.cpe23" value="cpe:/h:dell:kace_k1000_systems_management_appliance:-"/>
|
1210
1424
|
<param pos="0" name="os.vendor" value="KACE"/>
|
1211
1425
|
<param pos="0" name="os.family" value="FreeBSD"/>
|
1212
1426
|
</fingerprint>
|
@@ -1419,7 +1633,26 @@
|
|
1419
1633
|
<param pos="0" name="service.vendor" value="Citrix"/>
|
1420
1634
|
<param pos="0" name="service.product" value="XenServer"/>
|
1421
1635
|
<param pos="1" name="service.version"/>
|
1636
|
+
<param pos="0" name="service.device" value="Hypervisor"/>
|
1422
1637
|
<param pos="0" name="service.cpe23" value="cpe:/a:citrix:xenserver:{service.version}"/>
|
1638
|
+
<param pos="0" name="os.vendor" value="Citrix"/>
|
1639
|
+
<param pos="0" name="os.product" value="XenServer"/>
|
1640
|
+
<param pos="0" name="os.device" value="Hypervisor"/>
|
1641
|
+
<param pos="0" name="hw.device" value="Hypervisor"/>
|
1642
|
+
</fingerprint>
|
1643
|
+
|
1644
|
+
<fingerprint pattern="^Welcome to Citrix Hypervisor ([0-9\.]+)$">
|
1645
|
+
<description>XenServer - Hypervisor variant</description>
|
1646
|
+
<example service.version="8.2.0">Welcome to Citrix Hypervisor 8.2.0</example>
|
1647
|
+
<param pos="0" name="service.vendor" value="Citrix"/>
|
1648
|
+
<param pos="0" name="service.product" value="XenServer"/>
|
1649
|
+
<param pos="1" name="service.version"/>
|
1650
|
+
<param pos="0" name="service.device" value="Hypervisor"/>
|
1651
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:citrix:xenserver:{service.version}"/>
|
1652
|
+
<param pos="0" name="os.vendor" value="Citrix"/>
|
1653
|
+
<param pos="0" name="os.product" value="XenServer"/>
|
1654
|
+
<param pos="0" name="os.device" value="Hypervisor"/>
|
1655
|
+
<param pos="0" name="hw.device" value="Hypervisor"/>
|
1423
1656
|
</fingerprint>
|
1424
1657
|
|
1425
1658
|
<fingerprint pattern="^RabbitMQ Management$">
|
@@ -1469,7 +1702,7 @@
|
|
1469
1702
|
<param pos="0" name="service.cpe23" value="cpe:/a:realvnc:realvnc:-"/>
|
1470
1703
|
</fingerprint>
|
1471
1704
|
|
1472
|
-
<fingerprint pattern="
|
1705
|
+
<fingerprint pattern="^.{0,1024} \[Jenkins\]$">
|
1473
1706
|
<description>Jenkins Customized Dashboard</description>
|
1474
1707
|
<example>Continuous Integrations [Jenkins]</example>
|
1475
1708
|
<example>Dashboard [Jenkins]</example>
|
@@ -1501,10 +1734,11 @@
|
|
1501
1734
|
</fingerprint>
|
1502
1735
|
|
1503
1736
|
<fingerprint pattern="^Login - OpenStack Dashboard$">
|
1504
|
-
<description>OpenStack Dashboard</description>
|
1737
|
+
<description>OpenStack Horizon Dashboard</description>
|
1505
1738
|
<example>Login - OpenStack Dashboard</example>
|
1506
1739
|
<param pos="0" name="service.vendor" value="OpenStack"/>
|
1507
|
-
<param pos="0" name="service.product" value="
|
1740
|
+
<param pos="0" name="service.product" value="Horizon"/>
|
1741
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:openstack:horizon:-"/>
|
1508
1742
|
</fingerprint>
|
1509
1743
|
|
1510
1744
|
<fingerprint pattern="^splunkd$">
|
@@ -1538,6 +1772,34 @@
|
|
1538
1772
|
<param pos="0" name="service.product" value="Site Recovery Manager"/>
|
1539
1773
|
</fingerprint>
|
1540
1774
|
|
1775
|
+
<fingerprint pattern="^" \+ ID_VC_Welcome \+ "$">
|
1776
|
+
<description>VMware vCenter</description>
|
1777
|
+
<example>" + ID_VC_Welcome + "</example>
|
1778
|
+
<param pos="0" name="service.vendor" value="VMware"/>
|
1779
|
+
<param pos="0" name="service.product" value="vCenter"/>
|
1780
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:vmware:vcenter_server:-"/>
|
1781
|
+
</fingerprint>
|
1782
|
+
|
1783
|
+
<fingerprint pattern="^" \+ ID_EESX_Welcome \+ "$">
|
1784
|
+
<description>VMware ESXi</description>
|
1785
|
+
<example>" + ID_EESX_Welcome + "</example>
|
1786
|
+
<param pos="0" name="service.vendor" value="VMware"/>
|
1787
|
+
<param pos="0" name="os.vendor" value="VMware"/>
|
1788
|
+
<param pos="0" name="os.family" value="VMware ESX/ESXi"/>
|
1789
|
+
<param pos="0" name="os.product" value="VMware ESXi Server"/>
|
1790
|
+
<param pos="0" name="os.device" value="Hypervisor"/>
|
1791
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:vmware:esxi:-"/>
|
1792
|
+
<param pos="0" name="hw.device" value="Hypervisor"/>
|
1793
|
+
</fingerprint>
|
1794
|
+
|
1795
|
+
<fingerprint pattern="^" \+ ID_Converter_Welcome \+ "$">
|
1796
|
+
<description>VMware Converter</description>
|
1797
|
+
<example>" + ID_Converter_Welcome + "</example>
|
1798
|
+
<param pos="0" name="service.vendor" value="VMware"/>
|
1799
|
+
<param pos="0" name="service.product" value="vCenter Converter"/>
|
1800
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:vmware:vcenter_converter:-"/>
|
1801
|
+
</fingerprint>
|
1802
|
+
|
1541
1803
|
<fingerprint pattern="^Graylog Web Interface$">
|
1542
1804
|
<description>Graylog Web Interface</description>
|
1543
1805
|
<example>Graylog Web Interface</example>
|
@@ -1593,7 +1855,15 @@
|
|
1593
1855
|
<example>ManageEngine OpManager</example>
|
1594
1856
|
<param pos="0" name="service.vendor" value="ManageEngine"/>
|
1595
1857
|
<param pos="0" name="service.product" value="OpManager"/>
|
1596
|
-
<param pos="0" name="service.cpe23" value="cpe:/a:
|
1858
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:zohocorp:manageengine_opmanager:-"/>
|
1859
|
+
</fingerprint>
|
1860
|
+
|
1861
|
+
<fingerprint pattern="^ManageEngine Desktop Central 9$">
|
1862
|
+
<description>ManageEngine Desktop Central 9</description>
|
1863
|
+
<example>ManageEngine Desktop Central 9</example>
|
1864
|
+
<param pos="0" name="service.vendor" value="ManageEngine"/>
|
1865
|
+
<param pos="0" name="service.product" value="Desktop Central"/>
|
1866
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:manageengine:desktop_central:-"/>
|
1597
1867
|
</fingerprint>
|
1598
1868
|
|
1599
1869
|
<fingerprint pattern="^ManageEngine ADAudit Plus$">
|
@@ -1601,6 +1871,7 @@
|
|
1601
1871
|
<example>ManageEngine ADAudit Plus</example>
|
1602
1872
|
<param pos="0" name="service.vendor" value="ManageEngine"/>
|
1603
1873
|
<param pos="0" name="service.product" value="ADAudit Plus"/>
|
1874
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:zohocorp:manageengine_adaudit_plus:-"/>
|
1604
1875
|
</fingerprint>
|
1605
1876
|
|
1606
1877
|
<fingerprint pattern="^(ScanFront \d.+)Web Menu$">
|
@@ -1659,11 +1930,17 @@
|
|
1659
1930
|
<param pos="0" name="os.family" value="NetScaler"/>
|
1660
1931
|
<param pos="0" name="os.device" value="Network Management Device"/>
|
1661
1932
|
<param pos="0" name="os.product" value="NetScaler"/>
|
1933
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:citrix:netscaler_firmware:-"/>
|
1662
1934
|
<param pos="0" name="service.vendor" value="Citrix"/>
|
1663
1935
|
<param pos="0" name="service.family" value="NetScaler"/>
|
1664
1936
|
<param pos="0" name="service.device" value="Network Management Device"/>
|
1665
1937
|
<param pos="0" name="service.product" value="NetScaler"/>
|
1666
1938
|
<param pos="0" name="service.cpe23" value="cpe:/a:citrix:netscaler:-"/>
|
1939
|
+
<param pos="0" name="hw.vendor" value="Citrix"/>
|
1940
|
+
<param pos="0" name="hw.family" value="NetScaler"/>
|
1941
|
+
<param pos="0" name="hw.device" value="Network Management Device"/>
|
1942
|
+
<param pos="0" name="hw.product" value="NetScaler Gateway"/>
|
1943
|
+
<param pos="0" name="hw.cpe23" value="cpe:/h:citrix:netscaler_gateway:-"/>
|
1667
1944
|
</fingerprint>
|
1668
1945
|
|
1669
1946
|
<fingerprint pattern="^Netscaler Gateway$">
|
@@ -1673,10 +1950,17 @@
|
|
1673
1950
|
<param pos="0" name="os.family" value="NetScaler"/>
|
1674
1951
|
<param pos="0" name="os.device" value="Network Management Device"/>
|
1675
1952
|
<param pos="0" name="os.product" value="NetScaler Gateway"/>
|
1953
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:citrix:netscaler_gateway_firmware:-"/>
|
1676
1954
|
<param pos="0" name="service.vendor" value="Citrix"/>
|
1677
1955
|
<param pos="0" name="service.family" value="NetScaler"/>
|
1678
1956
|
<param pos="0" name="service.device" value="Network Management Device"/>
|
1679
1957
|
<param pos="0" name="service.product" value="NetScaler Gateway"/>
|
1958
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:citrix:netscaler_gateway:-"/>
|
1959
|
+
<param pos="0" name="hw.vendor" value="Citrix"/>
|
1960
|
+
<param pos="0" name="hw.family" value="NetScaler"/>
|
1961
|
+
<param pos="0" name="hw.device" value="Network Management Device"/>
|
1962
|
+
<param pos="0" name="hw.product" value="NetScaler Gateway"/>
|
1963
|
+
<param pos="0" name="hw.cpe23" value="cpe:/h:citrix:netscaler_gateway:-"/>
|
1680
1964
|
</fingerprint>
|
1681
1965
|
|
1682
1966
|
<fingerprint pattern="^Citrix (?:NetScaler SDX|ADC SDX)$">
|
@@ -1691,6 +1975,11 @@
|
|
1691
1975
|
<param pos="0" name="service.family" value="NetScaler"/>
|
1692
1976
|
<param pos="0" name="service.device" value="Network Management Device"/>
|
1693
1977
|
<param pos="0" name="service.product" value="NetScaler SDX Gateway"/>
|
1978
|
+
<param pos="0" name="hw.vendor" value="Citrix"/>
|
1979
|
+
<param pos="0" name="hw.family" value="NetScaler"/>
|
1980
|
+
<param pos="0" name="hw.device" value="Network Management Device"/>
|
1981
|
+
<param pos="0" name="hw.product" value="NetScaler SDX Gateway"/>
|
1982
|
+
<param pos="0" name="hw.cpe23" value="cpe:/h:citrix:netscaler_sdx:-"/>
|
1694
1983
|
</fingerprint>
|
1695
1984
|
|
1696
1985
|
<fingerprint pattern="^Citrix NetScaler Insight Center$">
|
@@ -1804,22 +2093,22 @@
|
|
1804
2093
|
|
1805
2094
|
<fingerprint pattern="^AVTECH Software, Inc\. - Room Alert(?:&reg;)?\s+([a-zA-Z0-9/]+) - Advanced">
|
1806
2095
|
<description>AVTECH RoomAlert</description>
|
1807
|
-
<example hw.product="Room Alert 11E" hw.
|
1808
|
-
<example hw.product="Room Alert 32E/W" hw.
|
1809
|
-
<example hw.product="Room Alert 32E/W" hw.
|
2096
|
+
<example hw.product="Room Alert 11E" hw.model="11E">AVTECH Software, Inc. - Room Alert 11E - Advanced Computer Room Environment Monitoring, Alerting &amp; Automatic Corrective Action</example>
|
2097
|
+
<example hw.product="Room Alert 32E/W" hw.model="32E/W">AVTECH Software, Inc. - Room Alert 32E/W - Advanced Computer Room Environment Monitoring, Alerting &amp; Automatic Corrective Action</example>
|
2098
|
+
<example hw.product="Room Alert 32E/W" hw.model="32E/W">AVTECH Software, Inc. - Room Alert&reg; 32E/W - Advanced Computer Room Monitoring, Alerting &amp; Automatic Corrective Action</example>
|
1810
2099
|
<param pos="0" name="hw.vendor" value="AVTECH"/>
|
1811
2100
|
<param pos="0" name="hw.device" value="Monitoring"/>
|
1812
|
-
<param pos="1" name="hw.
|
1813
|
-
<param pos="0" name="hw.product" value="Room Alert {hw.
|
2101
|
+
<param pos="1" name="hw.model"/>
|
2102
|
+
<param pos="0" name="hw.product" value="Room Alert {hw.model}"/>
|
1814
2103
|
</fingerprint>
|
1815
2104
|
|
1816
2105
|
<fingerprint pattern="^AVTECH Software, Inc\. - TemPageR\s+([a-zA-Z0-9/]+) - Real-Time">
|
1817
2106
|
<description>AVTECH TepPageR</description>
|
1818
|
-
<example hw.product="TemPageR 3E" hw.
|
2107
|
+
<example hw.product="TemPageR 3E" hw.model="3E">AVTECH Software, Inc. - TemPageR 3E - Real-Time Temperature Monitor For IT &amp; Facilities Environment Monitoring</example>
|
1819
2108
|
<param pos="0" name="hw.vendor" value="AVTECH"/>
|
1820
2109
|
<param pos="0" name="hw.device" value="Monitoring"/>
|
1821
|
-
<param pos="1" name="hw.
|
1822
|
-
<param pos="0" name="hw.product" value="TemPageR {hw.
|
2110
|
+
<param pos="1" name="hw.model"/>
|
2111
|
+
<param pos="0" name="hw.product" value="TemPageR {hw.model}"/>
|
1823
2112
|
</fingerprint>
|
1824
2113
|
|
1825
2114
|
<fingerprint pattern="^AppDynamics$">
|
@@ -2076,7 +2365,7 @@
|
|
2076
2365
|
<param pos="0" name="service.product" value="SonarQube"/>
|
2077
2366
|
</fingerprint>
|
2078
2367
|
|
2079
|
-
<fingerprint pattern="^(\S
|
2368
|
+
<fingerprint pattern="^(\S{1,512}) - Opengear Management Console$">
|
2080
2369
|
<description>Opengear Management Console</description>
|
2081
2370
|
<example host.name="server01">server01 - Opengear Management Console</example>
|
2082
2371
|
<param pos="0" name="service.vendor" value="Opengear"/>
|
@@ -2181,6 +2470,14 @@
|
|
2181
2470
|
<param pos="0" name="service.product" value="Kiwi Syslog"/>
|
2182
2471
|
</fingerprint>
|
2183
2472
|
|
2473
|
+
<fingerprint pattern="^SolarWinds Orion$">
|
2474
|
+
<description>SolarWinds Orion</description>
|
2475
|
+
<example>SolarWinds Orion</example>
|
2476
|
+
<param pos="0" name="service.vendor" value="SolarWinds"/>
|
2477
|
+
<param pos="0" name="service.product" value="Orion Platform"/>
|
2478
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:solarwinds:orion_platform:-"/>
|
2479
|
+
</fingerprint>
|
2480
|
+
|
2184
2481
|
<fingerprint pattern="^ClickShare Configurator$">
|
2185
2482
|
<description>ClickShare Wireless Presenter</description>
|
2186
2483
|
<example>ClickShare Configurator</example>
|
@@ -2201,6 +2498,47 @@
|
|
2201
2498
|
<param pos="1" name="hw.product"/>
|
2202
2499
|
</fingerprint>
|
2203
2500
|
|
2501
|
+
<fingerprint pattern="^Welcome to Oracle Fusion Middleware$">
|
2502
|
+
<description>Oracle Fusion Middleware</description>
|
2503
|
+
<example>Welcome to Oracle Fusion Middleware</example>
|
2504
|
+
<param pos="0" name="service.vendor" value="Oracle"/>
|
2505
|
+
<param pos="0" name="service.product" value="Fusion Middleware"/>
|
2506
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:oracle:fusion_middleware:-"/>
|
2507
|
+
</fingerprint>
|
2508
|
+
|
2509
|
+
<fingerprint pattern="^Oracle Secure Global Desktop(?: Redirect Page)?$">
|
2510
|
+
<description>Oracle Secure Global Desktop</description>
|
2511
|
+
<example>Oracle Secure Global Desktop</example>
|
2512
|
+
<example>Oracle Secure Global Desktop Redirect Page</example>
|
2513
|
+
<param pos="0" name="service.vendor" value="Oracle"/>
|
2514
|
+
<param pos="0" name="service.product" value="Secure Global Desktop"/>
|
2515
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:oracle:secure_global_desktop:-"/>
|
2516
|
+
</fingerprint>
|
2517
|
+
|
2518
|
+
<fingerprint pattern="^OTM - Oracle Transportation Management$">
|
2519
|
+
<description>Oracle Transportation Management</description>
|
2520
|
+
<example>OTM - Oracle Transportation Management</example>
|
2521
|
+
<param pos="0" name="service.vendor" value="Oracle"/>
|
2522
|
+
<param pos="0" name="service.product" value="Transportation Management"/>
|
2523
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:oracle:transportation_management:-"/>
|
2524
|
+
</fingerprint>
|
2525
|
+
|
2526
|
+
<fingerprint pattern="^Bad Oracle Access Manager Request$">
|
2527
|
+
<description>Oracle Access Manager - Bad Request</description>
|
2528
|
+
<example>Bad Oracle Access Manager Request</example>
|
2529
|
+
<param pos="0" name="service.vendor" value="Oracle"/>
|
2530
|
+
<param pos="0" name="service.product" value="Access Manager"/>
|
2531
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:oracle:access_manager:-"/>
|
2532
|
+
</fingerprint>
|
2533
|
+
|
2534
|
+
<fingerprint pattern="^Oracle Access Manager Operation Error$">
|
2535
|
+
<description>Oracle Access Manager - Operation Error</description>
|
2536
|
+
<example>Oracle Access Manager Operation Error</example>
|
2537
|
+
<param pos="0" name="service.vendor" value="Oracle"/>
|
2538
|
+
<param pos="0" name="service.product" value="Access Manager"/>
|
2539
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:oracle:access_manager:-"/>
|
2540
|
+
</fingerprint>
|
2541
|
+
|
2204
2542
|
<fingerprint pattern="^(?:Oracle\(R\) )?Integrated Lights Out Manager$">
|
2205
2543
|
<description>Oracle iLOM</description>
|
2206
2544
|
<example>Oracle(R) Integrated Lights Out Manager</example>
|
@@ -2213,6 +2551,7 @@
|
|
2213
2551
|
<param pos="0" name="os.vendor" value="Oracle"/>
|
2214
2552
|
<param pos="0" name="os.family" value="ILOM"/>
|
2215
2553
|
<param pos="0" name="os.product" value="ILOM"/>
|
2554
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:oracle:integrated_lights_out_manager_firmware:-"/>
|
2216
2555
|
</fingerprint>
|
2217
2556
|
|
2218
2557
|
<fingerprint pattern="^Genetec - SHARPV\S+$">
|
@@ -2292,7 +2631,7 @@
|
|
2292
2631
|
<param pos="0" name="service.cpe23" value="cpe:/a:zabbix:zabbix:-"/>
|
2293
2632
|
</fingerprint>
|
2294
2633
|
|
2295
|
-
<fingerprint pattern="^(\S
|
2634
|
+
<fingerprint pattern="^(\S{1,512}) \(build (\S+)\) - Info$">
|
2296
2635
|
<description>DD-WRT</description>
|
2297
2636
|
<example host.name="SubTerraVia-NUC" os.version="36104" os.build="36104">SubTerraVia-NUC (build 36104) - Info</example>
|
2298
2637
|
<example host.name="DD-WRT" os.version="35030M" os.build="35030M">DD-WRT (build 35030M) - Info</example>
|
@@ -2316,10 +2655,11 @@
|
|
2316
2655
|
</fingerprint>
|
2317
2656
|
|
2318
2657
|
<fingerprint pattern="^Gerrit Code Review$">
|
2319
|
-
<description>Gerrit Code Review</description>
|
2658
|
+
<description>Google's Gerrit Code Review</description>
|
2320
2659
|
<example>Gerrit Code Review</example>
|
2321
|
-
<param pos="0" name="service.vendor" value="
|
2322
|
-
<param pos="0" name="service.product" value="
|
2660
|
+
<param pos="0" name="service.vendor" value="Google"/>
|
2661
|
+
<param pos="0" name="service.product" value="Gerrit"/>
|
2662
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:google:gerrit:-"/>
|
2323
2663
|
</fingerprint>
|
2324
2664
|
|
2325
2665
|
<fingerprint pattern=" - Ignition Gateway$">
|
@@ -2511,6 +2851,7 @@
|
|
2511
2851
|
<example>SolarWinds Virtualization Manager</example>
|
2512
2852
|
<param pos="0" name="service.vendor" value="SolarWinds"/>
|
2513
2853
|
<param pos="0" name="service.product" value="Virtualization Manager"/>
|
2854
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:solarwinds:virtualization_manager:-"/>
|
2514
2855
|
</fingerprint>
|
2515
2856
|
|
2516
2857
|
<fingerprint pattern="^(?:Gitea: .*|LocalRepo|TurnKey Gitea)$">
|
@@ -2568,9 +2909,10 @@
|
|
2568
2909
|
<param pos="0" name="service.certainty" value="0.5"/>
|
2569
2910
|
</fingerprint>
|
2570
2911
|
|
2571
|
-
<fingerprint pattern="^
|
2912
|
+
<fingerprint pattern="^[oO]wn[cC]loud$">
|
2572
2913
|
<description>ownCloud</description>
|
2573
2914
|
<example>ownCloud</example>
|
2915
|
+
<example>Owncloud</example>
|
2574
2916
|
<param pos="0" name="service.vendor" value="ownCloud"/>
|
2575
2917
|
<param pos="0" name="service.product" value="ownCloud Server"/>
|
2576
2918
|
<param pos="0" name="service.certainty" value="0.5"/>
|
@@ -2597,6 +2939,7 @@
|
|
2597
2939
|
<example>RStudio Sign In</example>
|
2598
2940
|
<param pos="0" name="service.vendor" value="RStudio"/>
|
2599
2941
|
<param pos="0" name="service.product" value="Connect"/>
|
2942
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:rstudio:connect:-"/>
|
2600
2943
|
</fingerprint>
|
2601
2944
|
|
2602
2945
|
<fingerprint pattern="^(?:TurnKey Moodle|New Site)$">
|
@@ -2654,9 +2997,10 @@
|
|
2654
2997
|
<param pos="0" name="service.product" value="Security Scanner"/>
|
2655
2998
|
</fingerprint>
|
2656
2999
|
|
2657
|
-
<fingerprint pattern="^Kodi
|
3000
|
+
<fingerprint pattern="^(?:Chorus 2 - )?Kodi(?: web interface)?$">
|
2658
3001
|
<description>Kodi Media Server</description>
|
2659
3002
|
<example>Kodi</example>
|
3003
|
+
<example>Chorus 2 - Kodi web interface</example>
|
2660
3004
|
<param pos="0" name="service.vendor" value="Kodi"/>
|
2661
3005
|
<param pos="0" name="service.product" value="Media Server"/>
|
2662
3006
|
<param pos="0" name="service.cpe23" value="cpe:/a:kodi:kodi:-"/>
|
@@ -2720,7 +3064,7 @@
|
|
2720
3064
|
<param pos="0" name="hw.certainty" value="0.75"/>
|
2721
3065
|
<param pos="0" name="os.vendor" value="Dell"/>
|
2722
3066
|
<param pos="0" name="os.product" value="iDRAC Linux"/>
|
2723
|
-
<param pos="0" name="os
|
3067
|
+
<param pos="0" name="os.certainty" value="0.75"/>
|
2724
3068
|
</fingerprint>
|
2725
3069
|
|
2726
3070
|
<fingerprint pattern="^Pulse Connect Secure - SSL">
|
@@ -2735,4 +3079,172 @@
|
|
2735
3079
|
<param pos="0" name="os.product" value="Pulse Connect Secure"/>
|
2736
3080
|
</fingerprint>
|
2737
3081
|
|
3082
|
+
<fingerprint pattern="^Jellyfin$">
|
3083
|
+
<description>Jellyfin media server</description>
|
3084
|
+
<example>Jellyfin</example>
|
3085
|
+
<param pos="0" name="service.vendor" value="Jellyfin"/>
|
3086
|
+
<param pos="0" name="service.product" value="Media Server"/>
|
3087
|
+
</fingerprint>
|
3088
|
+
|
3089
|
+
<fingerprint pattern="^proxmox - Proxmox Virtual Environment$">
|
3090
|
+
<description>Proxmox open-source virtualization platform</description>
|
3091
|
+
<example>proxmox - Proxmox Virtual Environment</example>
|
3092
|
+
<param pos="0" name="service.vendor" value="Proxmox"/>
|
3093
|
+
<param pos="0" name="service.product" value="Virtual Environment"/>
|
3094
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:proxmox:virtual_environment:-"/>
|
3095
|
+
<param pos="0" name="os.vendor" value="Proxmox"/>
|
3096
|
+
<param pos="0" name="os.family" value="Linux"/>
|
3097
|
+
<param pos="0" name="os.product" value="Proxmox"/>
|
3098
|
+
</fingerprint>
|
3099
|
+
|
3100
|
+
<fingerprint pattern="^Sony Network Camera$">
|
3101
|
+
<description>Sony Network Camera</description>
|
3102
|
+
<example>Sony Network Camera</example>
|
3103
|
+
<param pos="0" name="hw.vendor" value="Sony"/>
|
3104
|
+
<param pos="0" name="hw.device" value="IP Camera"/>
|
3105
|
+
<param pos="0" name="hw.product" value="Network Camera"/>
|
3106
|
+
</fingerprint>
|
3107
|
+
|
3108
|
+
<fingerprint pattern="Lifesize&reg;$">
|
3109
|
+
<description>Lifesize TelePresence</description>
|
3110
|
+
<example>Lifesize&reg;</example>
|
3111
|
+
<example>400 - Bad Request Lifesize&reg;</example>
|
3112
|
+
<param pos="0" name="hw.vendor" value="Lifesize"/>
|
3113
|
+
<param pos="0" name="hw.device" value="Video Conferencing"/>
|
3114
|
+
<param pos="0" name="hw.product" value="TelePresence"/>
|
3115
|
+
<param pos="0" name="os.vendor" value="Lifesize"/>
|
3116
|
+
<param pos="0" name="os.family" value="Linux"/>
|
3117
|
+
<param pos="0" name="os.product" value="TelePresence"/>
|
3118
|
+
<param pos="0" name="os.device" value="Video Conferencing"/>
|
3119
|
+
</fingerprint>
|
3120
|
+
|
3121
|
+
<fingerprint pattern="^AT&amp;T VPN Gateway$">
|
3122
|
+
<description>ATT VPN Gateway</description>
|
3123
|
+
<example>AT&amp;T VPN Gateway</example>
|
3124
|
+
<param pos="0" name="hw.vendor" value="ATT"/>
|
3125
|
+
<param pos="0" name="hw.device" value="VPN"/>
|
3126
|
+
<param pos="0" name="hw.product" value="VPN Gateway"/>
|
3127
|
+
</fingerprint>
|
3128
|
+
|
3129
|
+
<fingerprint pattern="^AT&amp;T U\d+: '([^']+)'$">
|
3130
|
+
<description>ATT VPN Gateway w Hostname</description>
|
3131
|
+
<example host.name="Austin-Boston">AT&amp;T U115: 'Austin-Boston'</example>
|
3132
|
+
<param pos="0" name="hw.vendor" value="ATT"/>
|
3133
|
+
<param pos="0" name="hw.device" value="VPN"/>
|
3134
|
+
<param pos="0" name="hw.product" value="VPN Gateway"/>
|
3135
|
+
<param pos="1" name="host.name"/>
|
3136
|
+
</fingerprint>
|
3137
|
+
|
3138
|
+
<fingerprint pattern="^(?:Symantec Encryption Verified Directory|Symantec Encryption Server.*)$">
|
3139
|
+
<description>Symantec PGP Key Management Server</description>
|
3140
|
+
<example>Symantec Encryption Verified Directory</example>
|
3141
|
+
<example>Symantec Encryption Server - Page Not Found</example>
|
3142
|
+
<example>Symantec Encryption Server - Login</example>
|
3143
|
+
<param pos="0" name="hw.vendor" value="Symantec"/>
|
3144
|
+
<param pos="0" name="hw.device" value="Security Appliance"/>
|
3145
|
+
<param pos="0" name="hw.product" value="Key Management Server"/>
|
3146
|
+
</fingerprint>
|
3147
|
+
|
3148
|
+
<fingerprint pattern="^Riverbed Technology, Inc\.$">
|
3149
|
+
<description>Riverbed Steelhead Appliance</description>
|
3150
|
+
<example>Riverbed Technology, Inc.</example>
|
3151
|
+
<param pos="0" name="hw.vendor" value="Riverbed"/>
|
3152
|
+
<param pos="0" name="hw.device" value="Security Appliance"/>
|
3153
|
+
<param pos="0" name="hw.product" value="Steelhead"/>
|
3154
|
+
<param pos="0" name="os.product" value="RiOS"/>
|
3155
|
+
<param pos="0" name="os.vendor" value="Riverbed"/>
|
3156
|
+
<param pos="0" name="os.cpe23" value="cpe:/o:riverbed:rios:-"/>
|
3157
|
+
</fingerprint>
|
3158
|
+
|
3159
|
+
<fingerprint pattern="^ClearPass - Aruba Networks$">
|
3160
|
+
<description>ClearPass Policy Manager Appliance</description>
|
3161
|
+
<example>ClearPass - Aruba Networks</example>
|
3162
|
+
<param pos="0" name="hw.vendor" value="Aruba Networks"/>
|
3163
|
+
<param pos="0" name="hw.device" value="Network Appliance"/>
|
3164
|
+
<param pos="0" name="hw.product" value="ClearPass Policy Manager"/>
|
3165
|
+
<param pos="0" name="service.vendor" value="Aruba Networks"/>
|
3166
|
+
<param pos="0" name="service.device" value="Network Appliance"/>
|
3167
|
+
<param pos="0" name="service.product" value="ClearPass Policy Manager"/>
|
3168
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:arubanetworks:clearpass_policy_manager:-"/>
|
3169
|
+
</fingerprint>
|
3170
|
+
|
3171
|
+
<fingerprint pattern="^MSTR Collab Server$">
|
3172
|
+
<description>MicroStrategy Collaboration Server</description>
|
3173
|
+
<example>MSTR Collab Server</example>
|
3174
|
+
<param pos="0" name="service.vendor" value="MicroStrategy"/>
|
3175
|
+
<param pos="0" name="service.product" value="Collaboration Server"/>
|
3176
|
+
<param pos="0" name="service.certainty" value="0.5"/>
|
3177
|
+
</fingerprint>
|
3178
|
+
|
3179
|
+
<fingerprint pattern="^Openfire Admin Console$">
|
3180
|
+
<description>Openfire Admin Console</description>
|
3181
|
+
<example>Openfire Admin Console</example>
|
3182
|
+
<param pos="0" name="service.vendor" value="Ignite Realtime"/>
|
3183
|
+
<param pos="0" name="service.product" value="OpenFire"/>
|
3184
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:igniterealtime:openfire:-"/>
|
3185
|
+
</fingerprint>
|
3186
|
+
|
3187
|
+
<fingerprint pattern="^:: PBX in a Flash">
|
3188
|
+
<description>PBX in a Flash</description>
|
3189
|
+
<example>:: PBX in a Flash, Welcome!</example>
|
3190
|
+
<param pos="0" name="hw.vendor" value="PIAF"/>
|
3191
|
+
<param pos="0" name="hw.device" value="SIP Gateway"/>
|
3192
|
+
<param pos="0" name="hw.product" value="PIAF Virtual Appliance"/>
|
3193
|
+
</fingerprint>
|
3194
|
+
|
3195
|
+
<fingerprint pattern="^Hak5 Cloud C">
|
3196
|
+
<description>Hak5 Cloud c2</description>
|
3197
|
+
<example>Hak5 Cloud C²</example>
|
3198
|
+
<param pos="0" name="service.vendor" value="Hak5"/>
|
3199
|
+
<param pos="0" name="service.product" value="Cloud C2"/>
|
3200
|
+
</fingerprint>
|
3201
|
+
|
3202
|
+
<fingerprint pattern="^Metabase$">
|
3203
|
+
<description>Metabase</description>
|
3204
|
+
<example>Metabase</example>
|
3205
|
+
<param pos="0" name="service.vendor" value="Metabase"/>
|
3206
|
+
<param pos="0" name="service.product" value="Metabase"/>
|
3207
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:metabase:metabase:-"/>
|
3208
|
+
</fingerprint>
|
3209
|
+
|
3210
|
+
<fingerprint pattern="Nextcloud">
|
3211
|
+
<description>Nextcloud</description>
|
3212
|
+
<example>Nextcloud</example>
|
3213
|
+
<param pos="0" name="service.vendor" value="Nextcloud"/>
|
3214
|
+
<param pos="0" name="service.product" value="Nextcloud Server"/>
|
3215
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:nextcloud:nextcloud_server:-"/>
|
3216
|
+
</fingerprint>
|
3217
|
+
|
3218
|
+
<fingerprint pattern="^Observium">
|
3219
|
+
<description>Observium</description>
|
3220
|
+
<example>Observium : - Test infra</example>
|
3221
|
+
<param pos="0" name="service.vendor" value="Observium"/>
|
3222
|
+
<param pos="0" name="service.product" value="Observium"/>
|
3223
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:observium:observium:-"/>
|
3224
|
+
</fingerprint>
|
3225
|
+
|
3226
|
+
<fingerprint pattern="^Login to Webmin$">
|
3227
|
+
<description>Webmin</description>
|
3228
|
+
<example>Login to Webmin</example>
|
3229
|
+
<param pos="0" name="service.vendor" value="Webmin"/>
|
3230
|
+
<param pos="0" name="service.product" value="Webmin"/>
|
3231
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:webmin:webmin:-"/>
|
3232
|
+
</fingerprint>
|
3233
|
+
|
3234
|
+
<fingerprint pattern="^Login to Usermin$">
|
3235
|
+
<description>Usermin</description>
|
3236
|
+
<example>Login to Usermin</example>
|
3237
|
+
<param pos="0" name="service.vendor" value="Webmin"/>
|
3238
|
+
<param pos="0" name="service.product" value="Usermin"/>
|
3239
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:webmin:usermin:-"/>
|
3240
|
+
</fingerprint>
|
3241
|
+
|
3242
|
+
<fingerprint pattern="^MoinMoinWiki">
|
3243
|
+
<description>Moinmoin wiki</description>
|
3244
|
+
<example>MoinMoinWiki - MoinMoin</example>
|
3245
|
+
<param pos="0" name="service.vendor" value="MoinMoin"/>
|
3246
|
+
<param pos="0" name="service.product" value="MoinMoin"/>
|
3247
|
+
<param pos="0" name="service.cpe23" value="cpe:/a:moinmo:moinmoin:-"/>
|
3248
|
+
</fingerprint>
|
3249
|
+
|
2738
3250
|
</fingerprints>
|