fingerprint-mcp 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (269) hide show
  1. package/LICENSE +663 -0
  2. package/README.ar.md +767 -0
  3. package/README.bn.md +767 -0
  4. package/README.bs.md +767 -0
  5. package/README.da.md +767 -0
  6. package/README.de.md +770 -0
  7. package/README.el.md +767 -0
  8. package/README.es.md +769 -0
  9. package/README.fr.md +769 -0
  10. package/README.hi.md +767 -0
  11. package/README.it.md +767 -0
  12. package/README.ja.md +767 -0
  13. package/README.ko.md +772 -0
  14. package/README.md +767 -0
  15. package/README.no.md +767 -0
  16. package/README.pl.md +767 -0
  17. package/README.pt-BR.md +767 -0
  18. package/README.ru.md +767 -0
  19. package/README.th.md +767 -0
  20. package/README.tr.md +767 -0
  21. package/README.uk.md +767 -0
  22. package/README.vi.md +767 -0
  23. package/README.zh-TW.md +768 -0
  24. package/README.zh.md +768 -0
  25. package/dist/app/index.d.ts +3 -0
  26. package/dist/app/index.d.ts.map +1 -0
  27. package/dist/app/index.js +614 -0
  28. package/dist/app/index.js.map +1 -0
  29. package/dist/composite/analyze.d.ts +3 -0
  30. package/dist/composite/analyze.d.ts.map +1 -0
  31. package/dist/composite/analyze.js +59 -0
  32. package/dist/composite/analyze.js.map +1 -0
  33. package/dist/composite/correlate.d.ts +3 -0
  34. package/dist/composite/correlate.d.ts.map +1 -0
  35. package/dist/composite/correlate.js +184 -0
  36. package/dist/composite/correlate.js.map +1 -0
  37. package/dist/composite/enumerate.d.ts +3 -0
  38. package/dist/composite/enumerate.d.ts.map +1 -0
  39. package/dist/composite/enumerate.js +94 -0
  40. package/dist/composite/enumerate.js.map +1 -0
  41. package/dist/composite/helpers.d.ts +22 -0
  42. package/dist/composite/helpers.d.ts.map +1 -0
  43. package/dist/composite/helpers.js +111 -0
  44. package/dist/composite/helpers.js.map +1 -0
  45. package/dist/composite/index.d.ts +3 -0
  46. package/dist/composite/index.d.ts.map +1 -0
  47. package/dist/composite/index.js +29 -0
  48. package/dist/composite/index.js.map +1 -0
  49. package/dist/composite/meta.d.ts +3 -0
  50. package/dist/composite/meta.d.ts.map +1 -0
  51. package/dist/composite/meta.js +23 -0
  52. package/dist/composite/meta.js.map +1 -0
  53. package/dist/composite/osint.d.ts +3 -0
  54. package/dist/composite/osint.d.ts.map +1 -0
  55. package/dist/composite/osint.js +40 -0
  56. package/dist/composite/osint.js.map +1 -0
  57. package/dist/composite/recon.d.ts +3 -0
  58. package/dist/composite/recon.d.ts.map +1 -0
  59. package/dist/composite/recon.js +131 -0
  60. package/dist/composite/recon.js.map +1 -0
  61. package/dist/composite/scan-dns.d.ts +3 -0
  62. package/dist/composite/scan-dns.d.ts.map +1 -0
  63. package/dist/composite/scan-dns.js +44 -0
  64. package/dist/composite/scan-dns.js.map +1 -0
  65. package/dist/composite/scan-http.d.ts +3 -0
  66. package/dist/composite/scan-http.d.ts.map +1 -0
  67. package/dist/composite/scan-http.js +68 -0
  68. package/dist/composite/scan-http.js.map +1 -0
  69. package/dist/composite/scan-paths.d.ts +3 -0
  70. package/dist/composite/scan-paths.d.ts.map +1 -0
  71. package/dist/composite/scan-paths.js +32 -0
  72. package/dist/composite/scan-paths.js.map +1 -0
  73. package/dist/composite/scan-ports.d.ts +3 -0
  74. package/dist/composite/scan-ports.d.ts.map +1 -0
  75. package/dist/composite/scan-ports.js +79 -0
  76. package/dist/composite/scan-ports.js.map +1 -0
  77. package/dist/composite/scan-services.d.ts +3 -0
  78. package/dist/composite/scan-services.d.ts.map +1 -0
  79. package/dist/composite/scan-services.js +111 -0
  80. package/dist/composite/scan-services.js.map +1 -0
  81. package/dist/composite/scan-tls.d.ts +3 -0
  82. package/dist/composite/scan-tls.d.ts.map +1 -0
  83. package/dist/composite/scan-tls.js +32 -0
  84. package/dist/composite/scan-tls.js.map +1 -0
  85. package/dist/composite/scan-waf.d.ts +3 -0
  86. package/dist/composite/scan-waf.d.ts.map +1 -0
  87. package/dist/composite/scan-waf.js +35 -0
  88. package/dist/composite/scan-waf.js.map +1 -0
  89. package/dist/correlation/index.d.ts +3 -0
  90. package/dist/correlation/index.d.ts.map +1 -0
  91. package/dist/correlation/index.js +1044 -0
  92. package/dist/correlation/index.js.map +1 -0
  93. package/dist/data/analytics-patterns.d.ts +21 -0
  94. package/dist/data/analytics-patterns.d.ts.map +1 -0
  95. package/dist/data/analytics-patterns.js +449 -0
  96. package/dist/data/analytics-patterns.js.map +1 -0
  97. package/dist/data/app-signatures.d.ts +52 -0
  98. package/dist/data/app-signatures.d.ts.map +1 -0
  99. package/dist/data/app-signatures.js +1143 -0
  100. package/dist/data/app-signatures.js.map +1 -0
  101. package/dist/data/c2-signatures.d.ts +54 -0
  102. package/dist/data/c2-signatures.d.ts.map +1 -0
  103. package/dist/data/c2-signatures.js +256 -0
  104. package/dist/data/c2-signatures.js.map +1 -0
  105. package/dist/data/cloud-ranges.d.ts +34 -0
  106. package/dist/data/cloud-ranges.d.ts.map +1 -0
  107. package/dist/data/cloud-ranges.js +628 -0
  108. package/dist/data/cloud-ranges.js.map +1 -0
  109. package/dist/data/cookie-patterns.d.ts +28 -0
  110. package/dist/data/cookie-patterns.d.ts.map +1 -0
  111. package/dist/data/cookie-patterns.js +225 -0
  112. package/dist/data/cookie-patterns.js.map +1 -0
  113. package/dist/data/error-signatures.d.ts +19 -0
  114. package/dist/data/error-signatures.d.ts.map +1 -0
  115. package/dist/data/error-signatures.js +321 -0
  116. package/dist/data/error-signatures.js.map +1 -0
  117. package/dist/data/favicon-hashes.d.ts +25 -0
  118. package/dist/data/favicon-hashes.d.ts.map +1 -0
  119. package/dist/data/favicon-hashes.js +249 -0
  120. package/dist/data/favicon-hashes.js.map +1 -0
  121. package/dist/data/h2-signatures.d.ts +50 -0
  122. package/dist/data/h2-signatures.d.ts.map +1 -0
  123. package/dist/data/h2-signatures.js +211 -0
  124. package/dist/data/h2-signatures.js.map +1 -0
  125. package/dist/data/header-order.d.ts +38 -0
  126. package/dist/data/header-order.d.ts.map +1 -0
  127. package/dist/data/header-order.js +185 -0
  128. package/dist/data/header-order.js.map +1 -0
  129. package/dist/data/jarm-signatures.d.ts +25 -0
  130. package/dist/data/jarm-signatures.d.ts.map +1 -0
  131. package/dist/data/jarm-signatures.js +213 -0
  132. package/dist/data/jarm-signatures.js.map +1 -0
  133. package/dist/data/saas-patterns.d.ts +23 -0
  134. package/dist/data/saas-patterns.d.ts.map +1 -0
  135. package/dist/data/saas-patterns.js +139 -0
  136. package/dist/data/saas-patterns.js.map +1 -0
  137. package/dist/data/sensitive-paths.d.ts +12 -0
  138. package/dist/data/sensitive-paths.d.ts.map +1 -0
  139. package/dist/data/sensitive-paths.js +1539 -0
  140. package/dist/data/sensitive-paths.js.map +1 -0
  141. package/dist/data/service-banners.d.ts +59 -0
  142. package/dist/data/service-banners.d.ts.map +1 -0
  143. package/dist/data/service-banners.js +323 -0
  144. package/dist/data/service-banners.js.map +1 -0
  145. package/dist/data/smtp-signatures.d.ts +12 -0
  146. package/dist/data/smtp-signatures.d.ts.map +1 -0
  147. package/dist/data/smtp-signatures.js +350 -0
  148. package/dist/data/smtp-signatures.js.map +1 -0
  149. package/dist/data/takeover-patterns.d.ts +37 -0
  150. package/dist/data/takeover-patterns.d.ts.map +1 -0
  151. package/dist/data/takeover-patterns.js +249 -0
  152. package/dist/data/takeover-patterns.js.map +1 -0
  153. package/dist/data/tech-patterns.d.ts +44 -0
  154. package/dist/data/tech-patterns.d.ts.map +1 -0
  155. package/dist/data/tech-patterns.js +690 -0
  156. package/dist/data/tech-patterns.js.map +1 -0
  157. package/dist/data/waf-signatures.d.ts +21 -0
  158. package/dist/data/waf-signatures.d.ts.map +1 -0
  159. package/dist/data/waf-signatures.js +318 -0
  160. package/dist/data/waf-signatures.js.map +1 -0
  161. package/dist/dns/index.d.ts +3 -0
  162. package/dist/dns/index.d.ts.map +1 -0
  163. package/dist/dns/index.js +1067 -0
  164. package/dist/dns/index.js.map +1 -0
  165. package/dist/enum/index.d.ts +3 -0
  166. package/dist/enum/index.d.ts.map +1 -0
  167. package/dist/enum/index.js +818 -0
  168. package/dist/enum/index.js.map +1 -0
  169. package/dist/h2/index.d.ts +3 -0
  170. package/dist/h2/index.d.ts.map +1 -0
  171. package/dist/h2/index.js +414 -0
  172. package/dist/h2/index.js.map +1 -0
  173. package/dist/http/index.d.ts +3 -0
  174. package/dist/http/index.d.ts.map +1 -0
  175. package/dist/http/index.js +2444 -0
  176. package/dist/http/index.js.map +1 -0
  177. package/dist/identify/index.d.ts +3 -0
  178. package/dist/identify/index.d.ts.map +1 -0
  179. package/dist/identify/index.js +447 -0
  180. package/dist/identify/index.js.map +1 -0
  181. package/dist/index.d.ts +3 -0
  182. package/dist/index.d.ts.map +1 -0
  183. package/dist/index.js +165 -0
  184. package/dist/index.js.map +1 -0
  185. package/dist/infra/index.d.ts +3 -0
  186. package/dist/infra/index.d.ts.map +1 -0
  187. package/dist/infra/index.js +989 -0
  188. package/dist/infra/index.js.map +1 -0
  189. package/dist/iot/index.d.ts +3 -0
  190. package/dist/iot/index.d.ts.map +1 -0
  191. package/dist/iot/index.js +610 -0
  192. package/dist/iot/index.js.map +1 -0
  193. package/dist/meta/index.d.ts +3 -0
  194. package/dist/meta/index.d.ts.map +1 -0
  195. package/dist/meta/index.js +442 -0
  196. package/dist/meta/index.js.map +1 -0
  197. package/dist/osint/index.d.ts +3 -0
  198. package/dist/osint/index.d.ts.map +1 -0
  199. package/dist/osint/index.js +687 -0
  200. package/dist/osint/index.js.map +1 -0
  201. package/dist/passive/index.d.ts +3 -0
  202. package/dist/passive/index.d.ts.map +1 -0
  203. package/dist/passive/index.js +944 -0
  204. package/dist/passive/index.js.map +1 -0
  205. package/dist/path/index.d.ts +3 -0
  206. package/dist/path/index.d.ts.map +1 -0
  207. package/dist/path/index.js +878 -0
  208. package/dist/path/index.js.map +1 -0
  209. package/dist/protocol/mcp-server.d.ts +4 -0
  210. package/dist/protocol/mcp-server.d.ts.map +1 -0
  211. package/dist/protocol/mcp-server.js +32 -0
  212. package/dist/protocol/mcp-server.js.map +1 -0
  213. package/dist/protocol/tools.d.ts +3 -0
  214. package/dist/protocol/tools.d.ts.map +1 -0
  215. package/dist/protocol/tools.js +5 -0
  216. package/dist/protocol/tools.js.map +1 -0
  217. package/dist/service/index.d.ts +3 -0
  218. package/dist/service/index.d.ts.map +1 -0
  219. package/dist/service/index.js +1053 -0
  220. package/dist/service/index.js.map +1 -0
  221. package/dist/smtp/index.d.ts +3 -0
  222. package/dist/smtp/index.d.ts.map +1 -0
  223. package/dist/smtp/index.js +437 -0
  224. package/dist/smtp/index.js.map +1 -0
  225. package/dist/ssh/index.d.ts +3 -0
  226. package/dist/ssh/index.d.ts.map +1 -0
  227. package/dist/ssh/index.js +676 -0
  228. package/dist/ssh/index.js.map +1 -0
  229. package/dist/tcp/index.d.ts +3 -0
  230. package/dist/tcp/index.d.ts.map +1 -0
  231. package/dist/tcp/index.js +369 -0
  232. package/dist/tcp/index.js.map +1 -0
  233. package/dist/timing/index.d.ts +3 -0
  234. package/dist/timing/index.d.ts.map +1 -0
  235. package/dist/timing/index.js +425 -0
  236. package/dist/timing/index.js.map +1 -0
  237. package/dist/tls/index.d.ts +3 -0
  238. package/dist/tls/index.d.ts.map +1 -0
  239. package/dist/tls/index.js +1332 -0
  240. package/dist/tls/index.js.map +1 -0
  241. package/dist/types/index.d.ts +26 -0
  242. package/dist/types/index.d.ts.map +1 -0
  243. package/dist/types/index.js +8 -0
  244. package/dist/types/index.js.map +1 -0
  245. package/dist/utils/cache.d.ts +11 -0
  246. package/dist/utils/cache.d.ts.map +1 -0
  247. package/dist/utils/cache.js +35 -0
  248. package/dist/utils/cache.js.map +1 -0
  249. package/dist/utils/murmurhash3.d.ts +3 -0
  250. package/dist/utils/murmurhash3.d.ts.map +1 -0
  251. package/dist/utils/murmurhash3.js +57 -0
  252. package/dist/utils/murmurhash3.js.map +1 -0
  253. package/dist/utils/rate-limiter.d.ts +10 -0
  254. package/dist/utils/rate-limiter.d.ts.map +1 -0
  255. package/dist/utils/rate-limiter.js +35 -0
  256. package/dist/utils/rate-limiter.js.map +1 -0
  257. package/dist/utils/require-key.d.ts +2 -0
  258. package/dist/utils/require-key.d.ts.map +1 -0
  259. package/dist/utils/require-key.js +8 -0
  260. package/dist/utils/require-key.js.map +1 -0
  261. package/dist/waf/index.d.ts +3 -0
  262. package/dist/waf/index.d.ts.map +1 -0
  263. package/dist/waf/index.js +767 -0
  264. package/dist/waf/index.js.map +1 -0
  265. package/dist/web/index.d.ts +3 -0
  266. package/dist/web/index.d.ts.map +1 -0
  267. package/dist/web/index.js +1366 -0
  268. package/dist/web/index.js.map +1 -0
  269. package/package.json +66 -0
@@ -0,0 +1,1539 @@
1
+ // sensitive-paths.ts — Categorized sensitive URL paths for web fingerprinting and exposure detection
2
+ // Each path is annotated with a category, severity, and description.
3
+ // ~250 entries covering admin panels, config files, debug endpoints, backups, VCS, dependencies, and more.
4
+ export const SENSITIVE_PATHS = [
5
+ // ═══════════════════════════════════════════════════════════════════════
6
+ // ADMIN PANELS
7
+ // ═══════════════════════════════════════════════════════════════════════
8
+ {
9
+ path: "/admin/",
10
+ category: "admin",
11
+ severity: "high",
12
+ description: "Generic admin panel",
13
+ },
14
+ {
15
+ path: "/admin/login",
16
+ category: "admin",
17
+ severity: "high",
18
+ description: "Admin login page",
19
+ },
20
+ {
21
+ path: "/administrator/",
22
+ category: "admin",
23
+ severity: "high",
24
+ description: "Joomla / generic administrator panel",
25
+ },
26
+ {
27
+ path: "/wp-admin/",
28
+ category: "admin",
29
+ severity: "high",
30
+ description: "WordPress admin dashboard",
31
+ },
32
+ {
33
+ path: "/wp-login.php",
34
+ category: "admin",
35
+ severity: "high",
36
+ description: "WordPress login page",
37
+ },
38
+ {
39
+ path: "/manager/html",
40
+ category: "admin",
41
+ severity: "critical",
42
+ description: "Apache Tomcat Manager — allows WAR deployment",
43
+ },
44
+ {
45
+ path: "/manager/status",
46
+ category: "admin",
47
+ severity: "high",
48
+ description: "Apache Tomcat status page",
49
+ },
50
+ {
51
+ path: "/phpmyadmin/",
52
+ category: "admin",
53
+ severity: "critical",
54
+ description: "phpMyAdmin database management UI",
55
+ },
56
+ {
57
+ path: "/pma/",
58
+ category: "admin",
59
+ severity: "critical",
60
+ description: "phpMyAdmin shorthand alias",
61
+ },
62
+ {
63
+ path: "/adminer.php",
64
+ category: "admin",
65
+ severity: "critical",
66
+ description: "Adminer single-file database management",
67
+ },
68
+ {
69
+ path: "/adminer/",
70
+ category: "admin",
71
+ severity: "critical",
72
+ description: "Adminer directory installation",
73
+ },
74
+ {
75
+ path: "/cockpit/",
76
+ category: "admin",
77
+ severity: "high",
78
+ description: "Cockpit CMS or Linux Cockpit web console",
79
+ },
80
+ {
81
+ path: "/grafana/",
82
+ category: "admin",
83
+ severity: "high",
84
+ description: "Grafana monitoring dashboard",
85
+ },
86
+ {
87
+ path: "/grafana/login",
88
+ category: "admin",
89
+ severity: "high",
90
+ description: "Grafana login page",
91
+ },
92
+ {
93
+ path: "/kibana/",
94
+ category: "admin",
95
+ severity: "high",
96
+ description: "Kibana Elasticsearch dashboard",
97
+ },
98
+ {
99
+ path: "/portainer/",
100
+ category: "admin",
101
+ severity: "critical",
102
+ description: "Portainer Docker management UI",
103
+ },
104
+ {
105
+ path: "/jenkins/",
106
+ category: "admin",
107
+ severity: "critical",
108
+ description: "Jenkins CI/CD dashboard",
109
+ },
110
+ {
111
+ path: "/jenkins/script",
112
+ category: "admin",
113
+ severity: "critical",
114
+ description: "Jenkins Groovy script console — allows RCE",
115
+ },
116
+ {
117
+ path: "/cPanel",
118
+ category: "admin",
119
+ severity: "high",
120
+ description: "cPanel web hosting control panel",
121
+ },
122
+ {
123
+ path: "/_admin/",
124
+ category: "admin",
125
+ severity: "high",
126
+ description: "Hidden admin panel (underscore prefix)",
127
+ },
128
+ {
129
+ path: "/admin-console/",
130
+ category: "admin",
131
+ severity: "high",
132
+ description: "JBoss / WildFly admin console",
133
+ },
134
+ {
135
+ path: "/webmin/",
136
+ category: "admin",
137
+ severity: "critical",
138
+ description: "Webmin system administration interface",
139
+ },
140
+ {
141
+ path: "/solr/",
142
+ category: "admin",
143
+ severity: "high",
144
+ description: "Apache Solr admin interface",
145
+ },
146
+ {
147
+ path: "/flower/",
148
+ category: "admin",
149
+ severity: "medium",
150
+ description: "Celery Flower task monitoring",
151
+ },
152
+ {
153
+ path: "/mailhog/",
154
+ category: "admin",
155
+ severity: "medium",
156
+ description: "MailHog email testing UI",
157
+ },
158
+ {
159
+ path: "/roundcube/",
160
+ category: "admin",
161
+ severity: "high",
162
+ description: "Roundcube webmail interface",
163
+ },
164
+ // ═══════════════════════════════════════════════════════════════════════
165
+ // CONFIGURATION FILES
166
+ // ═══════════════════════════════════════════════════════════════════════
167
+ {
168
+ path: "/.env",
169
+ category: "config",
170
+ severity: "critical",
171
+ description: "Environment variables — often contains API keys, DB credentials",
172
+ },
173
+ {
174
+ path: "/.env.production",
175
+ category: "config",
176
+ severity: "critical",
177
+ description: "Production environment variables",
178
+ },
179
+ {
180
+ path: "/.env.staging",
181
+ category: "config",
182
+ severity: "critical",
183
+ description: "Staging environment variables",
184
+ },
185
+ {
186
+ path: "/.env.local",
187
+ category: "config",
188
+ severity: "critical",
189
+ description: "Local override environment variables",
190
+ },
191
+ {
192
+ path: "/.env.backup",
193
+ category: "config",
194
+ severity: "critical",
195
+ description: "Backup of environment variables file",
196
+ },
197
+ {
198
+ path: "/wp-config.php",
199
+ category: "config",
200
+ severity: "critical",
201
+ description: "WordPress configuration with DB credentials",
202
+ },
203
+ {
204
+ path: "/wp-config.php.bak",
205
+ category: "config",
206
+ severity: "critical",
207
+ description: "Backup of WordPress configuration",
208
+ },
209
+ {
210
+ path: "/wp-config.php.old",
211
+ category: "config",
212
+ severity: "critical",
213
+ description: "Old WordPress configuration backup",
214
+ },
215
+ {
216
+ path: "/wp-config.php~",
217
+ category: "config",
218
+ severity: "critical",
219
+ description: "Editor backup of WordPress configuration",
220
+ },
221
+ {
222
+ path: "/web.config",
223
+ category: "config",
224
+ severity: "high",
225
+ description: "IIS / ASP.NET web configuration",
226
+ },
227
+ {
228
+ path: "/config.php",
229
+ category: "config",
230
+ severity: "high",
231
+ description: "Generic PHP configuration file",
232
+ },
233
+ {
234
+ path: "/configuration.php",
235
+ category: "config",
236
+ severity: "high",
237
+ description: "Joomla configuration file",
238
+ },
239
+ {
240
+ path: "/config.inc.php",
241
+ category: "config",
242
+ severity: "high",
243
+ description: "PHP include configuration (phpMyAdmin, etc.)",
244
+ },
245
+ {
246
+ path: "/settings.py",
247
+ category: "config",
248
+ severity: "high",
249
+ description: "Django settings module",
250
+ },
251
+ {
252
+ path: "/local_settings.py",
253
+ category: "config",
254
+ severity: "critical",
255
+ description: "Django local settings with secrets",
256
+ },
257
+ {
258
+ path: "/application.yml",
259
+ category: "config",
260
+ severity: "high",
261
+ description: "Spring Boot application configuration",
262
+ },
263
+ {
264
+ path: "/application.properties",
265
+ category: "config",
266
+ severity: "high",
267
+ description: "Spring Boot properties configuration",
268
+ },
269
+ {
270
+ path: "/appsettings.json",
271
+ category: "config",
272
+ severity: "high",
273
+ description: "ASP.NET Core application settings",
274
+ },
275
+ {
276
+ path: "/appsettings.Development.json",
277
+ category: "config",
278
+ severity: "high",
279
+ description: "ASP.NET Core development settings",
280
+ },
281
+ {
282
+ path: "/config/database.yml",
283
+ category: "config",
284
+ severity: "critical",
285
+ description: "Rails database configuration",
286
+ },
287
+ {
288
+ path: "/config/secrets.yml",
289
+ category: "config",
290
+ severity: "critical",
291
+ description: "Rails secrets file",
292
+ },
293
+ {
294
+ path: "/config/master.key",
295
+ category: "config",
296
+ severity: "critical",
297
+ description: "Rails master encryption key",
298
+ },
299
+ {
300
+ path: "/conf/server.xml",
301
+ category: "config",
302
+ severity: "high",
303
+ description: "Tomcat server configuration",
304
+ },
305
+ {
306
+ path: "/WEB-INF/web.xml",
307
+ category: "config",
308
+ severity: "high",
309
+ description: "Java web application deployment descriptor",
310
+ },
311
+ {
312
+ path: "/crossdomain.xml",
313
+ category: "config",
314
+ severity: "medium",
315
+ description: "Flash cross-domain policy file",
316
+ },
317
+ {
318
+ path: "/phpinfo.php",
319
+ category: "config",
320
+ severity: "high",
321
+ description: "PHP configuration disclosure via phpinfo()",
322
+ },
323
+ {
324
+ path: "/info.php",
325
+ category: "config",
326
+ severity: "high",
327
+ description: "PHP info page (common alias)",
328
+ },
329
+ // ═══════════════════════════════════════════════════════════════════════
330
+ // DEBUG / MONITORING ENDPOINTS
331
+ // ═══════════════════════════════════════════════════════════════════════
332
+ {
333
+ path: "/actuator",
334
+ category: "debug",
335
+ severity: "high",
336
+ description: "Spring Boot Actuator root — lists available endpoints",
337
+ },
338
+ {
339
+ path: "/actuator/env",
340
+ category: "debug",
341
+ severity: "critical",
342
+ description: "Spring Boot environment variables and properties",
343
+ },
344
+ {
345
+ path: "/actuator/heapdump",
346
+ category: "debug",
347
+ severity: "critical",
348
+ description: "Spring Boot JVM heap dump — contains in-memory secrets",
349
+ },
350
+ {
351
+ path: "/actuator/mappings",
352
+ category: "debug",
353
+ severity: "high",
354
+ description: "Spring Boot request mapping list",
355
+ },
356
+ {
357
+ path: "/actuator/configprops",
358
+ category: "debug",
359
+ severity: "high",
360
+ description: "Spring Boot configuration properties",
361
+ },
362
+ {
363
+ path: "/actuator/beans",
364
+ category: "debug",
365
+ severity: "medium",
366
+ description: "Spring Boot bean registry",
367
+ },
368
+ {
369
+ path: "/actuator/health",
370
+ category: "debug",
371
+ severity: "low",
372
+ description: "Spring Boot health check endpoint",
373
+ },
374
+ {
375
+ path: "/actuator/info",
376
+ category: "debug",
377
+ severity: "low",
378
+ description: "Spring Boot application info",
379
+ },
380
+ {
381
+ path: "/actuator/threaddump",
382
+ category: "debug",
383
+ severity: "high",
384
+ description: "Spring Boot thread dump",
385
+ },
386
+ {
387
+ path: "/actuator/loggers",
388
+ category: "debug",
389
+ severity: "medium",
390
+ description: "Spring Boot logger levels — can be changed via POST",
391
+ },
392
+ {
393
+ path: "/actuator/prometheus",
394
+ category: "debug",
395
+ severity: "medium",
396
+ description: "Prometheus metrics endpoint",
397
+ },
398
+ {
399
+ path: "/debug/vars",
400
+ category: "debug",
401
+ severity: "high",
402
+ description: "Go expvar debug variables",
403
+ },
404
+ {
405
+ path: "/debug/pprof/",
406
+ category: "debug",
407
+ severity: "high",
408
+ description: "Go pprof profiling endpoint",
409
+ },
410
+ {
411
+ path: "/debug/pprof/goroutine",
412
+ category: "debug",
413
+ severity: "high",
414
+ description: "Go goroutine stack traces",
415
+ },
416
+ {
417
+ path: "/debug/pprof/heap",
418
+ category: "debug",
419
+ severity: "high",
420
+ description: "Go heap profile",
421
+ },
422
+ {
423
+ path: "/server-info",
424
+ category: "debug",
425
+ severity: "medium",
426
+ description: "Apache mod_info — server configuration details",
427
+ },
428
+ {
429
+ path: "/server-status",
430
+ category: "debug",
431
+ severity: "medium",
432
+ description: "Apache mod_status — active request details",
433
+ },
434
+ {
435
+ path: "/console",
436
+ category: "debug",
437
+ severity: "critical",
438
+ description: "Flask/Werkzeug interactive debug console or H2 console",
439
+ },
440
+ {
441
+ path: "/h2-console/",
442
+ category: "debug",
443
+ severity: "critical",
444
+ description: "H2 Database web console",
445
+ },
446
+ {
447
+ path: "/elmah.axd",
448
+ category: "debug",
449
+ severity: "high",
450
+ description: "ASP.NET ELMAH error log viewer",
451
+ },
452
+ {
453
+ path: "/_profiler/",
454
+ category: "debug",
455
+ severity: "high",
456
+ description: "Symfony web profiler toolbar",
457
+ },
458
+ {
459
+ path: "/_debugbar/",
460
+ category: "debug",
461
+ severity: "high",
462
+ description: "Laravel Debugbar endpoint",
463
+ },
464
+ {
465
+ path: "/telescope/",
466
+ category: "debug",
467
+ severity: "high",
468
+ description: "Laravel Telescope debug assistant",
469
+ },
470
+ {
471
+ path: "/ray",
472
+ category: "debug",
473
+ severity: "medium",
474
+ description: "Spatie Ray debugging tool endpoint",
475
+ },
476
+ {
477
+ path: "/metrics",
478
+ category: "debug",
479
+ severity: "medium",
480
+ description: "Prometheus / application metrics endpoint",
481
+ },
482
+ {
483
+ path: "/healthz",
484
+ category: "debug",
485
+ severity: "info",
486
+ description: "Kubernetes health check endpoint",
487
+ },
488
+ {
489
+ path: "/readyz",
490
+ category: "debug",
491
+ severity: "info",
492
+ description: "Kubernetes readiness probe",
493
+ },
494
+ {
495
+ path: "/livez",
496
+ category: "debug",
497
+ severity: "info",
498
+ description: "Kubernetes liveness probe",
499
+ },
500
+ {
501
+ path: "/_debug/",
502
+ category: "debug",
503
+ severity: "high",
504
+ description: "Generic debug endpoint",
505
+ },
506
+ {
507
+ path: "/trace",
508
+ category: "debug",
509
+ severity: "high",
510
+ description: "HTTP TRACE method echo (XST attack surface)",
511
+ },
512
+ {
513
+ path: "/status",
514
+ category: "debug",
515
+ severity: "low",
516
+ description: "Application status page",
517
+ },
518
+ {
519
+ path: "/stats",
520
+ category: "debug",
521
+ severity: "medium",
522
+ description: "Application statistics endpoint",
523
+ },
524
+ // ═══════════════════════════════════════════════════════════════════════
525
+ // BACKUP / DATABASE DUMPS
526
+ // ═══════════════════════════════════════════════════════════════════════
527
+ {
528
+ path: "/backup/",
529
+ category: "backup",
530
+ severity: "critical",
531
+ description: "Backup directory listing",
532
+ },
533
+ {
534
+ path: "/backups/",
535
+ category: "backup",
536
+ severity: "critical",
537
+ description: "Backups directory listing",
538
+ },
539
+ {
540
+ path: "/backup.zip",
541
+ category: "backup",
542
+ severity: "critical",
543
+ description: "Full site backup archive",
544
+ },
545
+ {
546
+ path: "/backup.tar.gz",
547
+ category: "backup",
548
+ severity: "critical",
549
+ description: "Full site backup tarball",
550
+ },
551
+ {
552
+ path: "/backup.sql",
553
+ category: "backup",
554
+ severity: "critical",
555
+ description: "Database SQL backup",
556
+ },
557
+ {
558
+ path: "/database.sql",
559
+ category: "backup",
560
+ severity: "critical",
561
+ description: "Database SQL dump",
562
+ },
563
+ {
564
+ path: "/db.sql",
565
+ category: "backup",
566
+ severity: "critical",
567
+ description: "Database SQL dump (short name)",
568
+ },
569
+ {
570
+ path: "/dump.sql",
571
+ category: "backup",
572
+ severity: "critical",
573
+ description: "Database SQL dump",
574
+ },
575
+ {
576
+ path: "/data.sql",
577
+ category: "backup",
578
+ severity: "critical",
579
+ description: "Data export SQL file",
580
+ },
581
+ {
582
+ path: "/database.sql.gz",
583
+ category: "backup",
584
+ severity: "critical",
585
+ description: "Compressed database dump",
586
+ },
587
+ {
588
+ path: "/db.sql.gz",
589
+ category: "backup",
590
+ severity: "critical",
591
+ description: "Compressed database dump",
592
+ },
593
+ {
594
+ path: "/dump.sql.gz",
595
+ category: "backup",
596
+ severity: "critical",
597
+ description: "Compressed database dump",
598
+ },
599
+ {
600
+ path: "/site.tar.gz",
601
+ category: "backup",
602
+ severity: "critical",
603
+ description: "Full site archive",
604
+ },
605
+ {
606
+ path: "/www.zip",
607
+ category: "backup",
608
+ severity: "critical",
609
+ description: "Web root archive",
610
+ },
611
+ {
612
+ path: "/htdocs.tar.gz",
613
+ category: "backup",
614
+ severity: "critical",
615
+ description: "Apache htdocs archive",
616
+ },
617
+ {
618
+ path: "/.bak",
619
+ category: "backup",
620
+ severity: "high",
621
+ description: "Generic backup file at root",
622
+ },
623
+ {
624
+ path: "/database/",
625
+ category: "backup",
626
+ severity: "high",
627
+ description: "Database directory listing",
628
+ },
629
+ {
630
+ path: "/old/",
631
+ category: "backup",
632
+ severity: "medium",
633
+ description: "Old files directory",
634
+ },
635
+ {
636
+ path: "/temp/",
637
+ category: "backup",
638
+ severity: "medium",
639
+ description: "Temporary files directory",
640
+ },
641
+ {
642
+ path: "/tmp/",
643
+ category: "backup",
644
+ severity: "medium",
645
+ description: "Temporary files directory",
646
+ },
647
+ // ═══════════════════════════════════════════════════════════════════════
648
+ // VERSION CONTROL
649
+ // ═══════════════════════════════════════════════════════════════════════
650
+ {
651
+ path: "/.git/config",
652
+ category: "vcs",
653
+ severity: "critical",
654
+ description: "Git configuration — may expose remote URLs with credentials",
655
+ },
656
+ {
657
+ path: "/.git/HEAD",
658
+ category: "vcs",
659
+ severity: "high",
660
+ description: "Git HEAD reference — confirms .git exposure",
661
+ },
662
+ {
663
+ path: "/.git/index",
664
+ category: "vcs",
665
+ severity: "critical",
666
+ description: "Git index file — lists all tracked files",
667
+ },
668
+ {
669
+ path: "/.git/logs/HEAD",
670
+ category: "vcs",
671
+ severity: "high",
672
+ description: "Git reflog — commit history with messages",
673
+ },
674
+ {
675
+ path: "/.git/refs/heads/main",
676
+ category: "vcs",
677
+ severity: "high",
678
+ description: "Git main branch reference",
679
+ },
680
+ {
681
+ path: "/.git/refs/heads/master",
682
+ category: "vcs",
683
+ severity: "high",
684
+ description: "Git master branch reference",
685
+ },
686
+ {
687
+ path: "/.git/COMMIT_EDITMSG",
688
+ category: "vcs",
689
+ severity: "medium",
690
+ description: "Last Git commit message",
691
+ },
692
+ {
693
+ path: "/.git/description",
694
+ category: "vcs",
695
+ severity: "low",
696
+ description: "Git repository description",
697
+ },
698
+ {
699
+ path: "/.gitignore",
700
+ category: "vcs",
701
+ severity: "low",
702
+ description: "Git ignore rules — reveals project structure",
703
+ },
704
+ {
705
+ path: "/.svn/entries",
706
+ category: "vcs",
707
+ severity: "critical",
708
+ description: "Subversion entries — lists tracked paths",
709
+ },
710
+ {
711
+ path: "/.svn/wc.db",
712
+ category: "vcs",
713
+ severity: "critical",
714
+ description: "Subversion working copy database",
715
+ },
716
+ {
717
+ path: "/.hg/",
718
+ category: "vcs",
719
+ severity: "critical",
720
+ description: "Mercurial repository directory",
721
+ },
722
+ {
723
+ path: "/.hg/hgrc",
724
+ category: "vcs",
725
+ severity: "high",
726
+ description: "Mercurial configuration — may contain credentials",
727
+ },
728
+ {
729
+ path: "/.bzr/",
730
+ category: "vcs",
731
+ severity: "critical",
732
+ description: "Bazaar version control directory",
733
+ },
734
+ {
735
+ path: "/.bzr/branch/branch.conf",
736
+ category: "vcs",
737
+ severity: "high",
738
+ description: "Bazaar branch configuration",
739
+ },
740
+ // ═══════════════════════════════════════════════════════════════════════
741
+ // DEPENDENCY / PACKAGE FILES
742
+ // ═══════════════════════════════════════════════════════════════════════
743
+ {
744
+ path: "/package.json",
745
+ category: "dependency",
746
+ severity: "medium",
747
+ description: "Node.js package manifest — reveals dependencies and scripts",
748
+ },
749
+ {
750
+ path: "/package-lock.json",
751
+ category: "dependency",
752
+ severity: "low",
753
+ description: "Node.js locked dependency tree",
754
+ },
755
+ {
756
+ path: "/yarn.lock",
757
+ category: "dependency",
758
+ severity: "low",
759
+ description: "Yarn locked dependency tree",
760
+ },
761
+ {
762
+ path: "/pnpm-lock.yaml",
763
+ category: "dependency",
764
+ severity: "low",
765
+ description: "pnpm locked dependency tree",
766
+ },
767
+ {
768
+ path: "/bun.lockb",
769
+ category: "dependency",
770
+ severity: "low",
771
+ description: "Bun locked dependency tree (binary)",
772
+ },
773
+ {
774
+ path: "/composer.json",
775
+ category: "dependency",
776
+ severity: "medium",
777
+ description: "PHP Composer package manifest",
778
+ },
779
+ {
780
+ path: "/composer.lock",
781
+ category: "dependency",
782
+ severity: "low",
783
+ description: "PHP Composer locked dependencies",
784
+ },
785
+ {
786
+ path: "/requirements.txt",
787
+ category: "dependency",
788
+ severity: "medium",
789
+ description: "Python pip requirements",
790
+ },
791
+ {
792
+ path: "/Pipfile",
793
+ category: "dependency",
794
+ severity: "medium",
795
+ description: "Python Pipenv dependency file",
796
+ },
797
+ {
798
+ path: "/Pipfile.lock",
799
+ category: "dependency",
800
+ severity: "low",
801
+ description: "Python Pipenv locked dependencies",
802
+ },
803
+ {
804
+ path: "/poetry.lock",
805
+ category: "dependency",
806
+ severity: "low",
807
+ description: "Python Poetry locked dependencies",
808
+ },
809
+ {
810
+ path: "/pyproject.toml",
811
+ category: "dependency",
812
+ severity: "medium",
813
+ description: "Python project configuration (PEP 518)",
814
+ },
815
+ {
816
+ path: "/go.mod",
817
+ category: "dependency",
818
+ severity: "medium",
819
+ description: "Go module dependency file",
820
+ },
821
+ {
822
+ path: "/go.sum",
823
+ category: "dependency",
824
+ severity: "low",
825
+ description: "Go module checksum file",
826
+ },
827
+ {
828
+ path: "/Gemfile",
829
+ category: "dependency",
830
+ severity: "medium",
831
+ description: "Ruby Bundler dependency file",
832
+ },
833
+ {
834
+ path: "/Gemfile.lock",
835
+ category: "dependency",
836
+ severity: "low",
837
+ description: "Ruby Bundler locked dependencies",
838
+ },
839
+ {
840
+ path: "/pom.xml",
841
+ category: "dependency",
842
+ severity: "medium",
843
+ description: "Maven project configuration",
844
+ },
845
+ {
846
+ path: "/build.gradle",
847
+ category: "dependency",
848
+ severity: "medium",
849
+ description: "Gradle build configuration",
850
+ },
851
+ {
852
+ path: "/build.gradle.kts",
853
+ category: "dependency",
854
+ severity: "medium",
855
+ description: "Gradle Kotlin DSL build configuration",
856
+ },
857
+ {
858
+ path: "/Cargo.toml",
859
+ category: "dependency",
860
+ severity: "medium",
861
+ description: "Rust Cargo package manifest",
862
+ },
863
+ {
864
+ path: "/Cargo.lock",
865
+ category: "dependency",
866
+ severity: "low",
867
+ description: "Rust Cargo locked dependencies",
868
+ },
869
+ {
870
+ path: "/mix.exs",
871
+ category: "dependency",
872
+ severity: "medium",
873
+ description: "Elixir Mix project configuration",
874
+ },
875
+ {
876
+ path: "/pubspec.yaml",
877
+ category: "dependency",
878
+ severity: "medium",
879
+ description: "Dart/Flutter package manifest",
880
+ },
881
+ {
882
+ path: "/cabal.project",
883
+ category: "dependency",
884
+ severity: "medium",
885
+ description: "Haskell Cabal project file",
886
+ },
887
+ // ═══════════════════════════════════════════════════════════════════════
888
+ // WELL-KNOWN PATHS
889
+ // ═══════════════════════════════════════════════════════════════════════
890
+ {
891
+ path: "/.well-known/security.txt",
892
+ category: "well-known",
893
+ severity: "info",
894
+ description: "Security contact information (RFC 9116)",
895
+ },
896
+ {
897
+ path: "/security.txt",
898
+ category: "well-known",
899
+ severity: "info",
900
+ description: "Security contact information (legacy path)",
901
+ },
902
+ {
903
+ path: "/.well-known/openid-configuration",
904
+ category: "well-known",
905
+ severity: "medium",
906
+ description: "OpenID Connect provider configuration",
907
+ },
908
+ {
909
+ path: "/.well-known/oauth-authorization-server",
910
+ category: "well-known",
911
+ severity: "medium",
912
+ description: "OAuth 2.0 authorization server metadata",
913
+ },
914
+ {
915
+ path: "/.well-known/apple-app-site-association",
916
+ category: "well-known",
917
+ severity: "info",
918
+ description: "Apple Universal Links configuration",
919
+ },
920
+ {
921
+ path: "/.well-known/assetlinks.json",
922
+ category: "well-known",
923
+ severity: "info",
924
+ description: "Android App Links digital asset links",
925
+ },
926
+ {
927
+ path: "/.well-known/change-password",
928
+ category: "well-known",
929
+ severity: "info",
930
+ description: "Password change redirect endpoint",
931
+ },
932
+ {
933
+ path: "/.well-known/jwks.json",
934
+ category: "well-known",
935
+ severity: "medium",
936
+ description: "JSON Web Key Set — public keys for JWT verification",
937
+ },
938
+ {
939
+ path: "/.well-known/matrix/client",
940
+ category: "well-known",
941
+ severity: "info",
942
+ description: "Matrix client server discovery",
943
+ },
944
+ {
945
+ path: "/.well-known/nodeinfo",
946
+ category: "well-known",
947
+ severity: "info",
948
+ description: "NodeInfo for federated social networks (Mastodon, etc.)",
949
+ },
950
+ {
951
+ path: "/.well-known/webfinger",
952
+ category: "well-known",
953
+ severity: "info",
954
+ description: "WebFinger protocol endpoint",
955
+ },
956
+ {
957
+ path: "/robots.txt",
958
+ category: "well-known",
959
+ severity: "info",
960
+ description: "Search engine crawl directives — reveals hidden paths",
961
+ },
962
+ {
963
+ path: "/sitemap.xml",
964
+ category: "well-known",
965
+ severity: "info",
966
+ description: "Site map — reveals URL structure",
967
+ },
968
+ {
969
+ path: "/humans.txt",
970
+ category: "well-known",
971
+ severity: "info",
972
+ description: "Team / contributor credits file",
973
+ },
974
+ {
975
+ path: "/favicon.ico",
976
+ category: "well-known",
977
+ severity: "info",
978
+ description: "Favicon — hash can identify default CMS/framework installs",
979
+ },
980
+ // ═══════════════════════════════════════════════════════════════════════
981
+ // API DOCUMENTATION
982
+ // ═══════════════════════════════════════════════════════════════════════
983
+ {
984
+ path: "/swagger.json",
985
+ category: "api-docs",
986
+ severity: "medium",
987
+ description: "Swagger / OpenAPI 2.0 specification (JSON)",
988
+ },
989
+ {
990
+ path: "/swagger.yaml",
991
+ category: "api-docs",
992
+ severity: "medium",
993
+ description: "Swagger / OpenAPI 2.0 specification (YAML)",
994
+ },
995
+ {
996
+ path: "/openapi.json",
997
+ category: "api-docs",
998
+ severity: "medium",
999
+ description: "OpenAPI 3.x specification (JSON)",
1000
+ },
1001
+ {
1002
+ path: "/openapi.yaml",
1003
+ category: "api-docs",
1004
+ severity: "medium",
1005
+ description: "OpenAPI 3.x specification (YAML)",
1006
+ },
1007
+ {
1008
+ path: "/api-docs",
1009
+ category: "api-docs",
1010
+ severity: "medium",
1011
+ description: "Generic API documentation endpoint",
1012
+ },
1013
+ {
1014
+ path: "/api-docs/",
1015
+ category: "api-docs",
1016
+ severity: "medium",
1017
+ description: "API documentation directory",
1018
+ },
1019
+ {
1020
+ path: "/swagger-ui.html",
1021
+ category: "api-docs",
1022
+ severity: "medium",
1023
+ description: "Swagger UI interactive API explorer",
1024
+ },
1025
+ {
1026
+ path: "/swagger-ui/",
1027
+ category: "api-docs",
1028
+ severity: "medium",
1029
+ description: "Swagger UI directory",
1030
+ },
1031
+ {
1032
+ path: "/swagger-resources",
1033
+ category: "api-docs",
1034
+ severity: "medium",
1035
+ description: "Spring Swagger resource listing",
1036
+ },
1037
+ {
1038
+ path: "/v2/api-docs",
1039
+ category: "api-docs",
1040
+ severity: "medium",
1041
+ description: "Swagger v2 API docs (Spring default)",
1042
+ },
1043
+ {
1044
+ path: "/v3/api-docs",
1045
+ category: "api-docs",
1046
+ severity: "medium",
1047
+ description: "OpenAPI v3 API docs (Spring default)",
1048
+ },
1049
+ {
1050
+ path: "/graphql",
1051
+ category: "api-docs",
1052
+ severity: "medium",
1053
+ description: "GraphQL API endpoint",
1054
+ },
1055
+ {
1056
+ path: "/graphiql",
1057
+ category: "api-docs",
1058
+ severity: "high",
1059
+ description: "GraphiQL interactive IDE — allows arbitrary queries",
1060
+ },
1061
+ {
1062
+ path: "/playground",
1063
+ category: "api-docs",
1064
+ severity: "high",
1065
+ description: "GraphQL Playground interactive IDE",
1066
+ },
1067
+ {
1068
+ path: "/altair",
1069
+ category: "api-docs",
1070
+ severity: "high",
1071
+ description: "Altair GraphQL client",
1072
+ },
1073
+ {
1074
+ path: "/_catalog",
1075
+ category: "api-docs",
1076
+ severity: "high",
1077
+ description: "Docker Registry v2 image catalog",
1078
+ },
1079
+ {
1080
+ path: "/v2/_catalog",
1081
+ category: "api-docs",
1082
+ severity: "high",
1083
+ description: "Docker Registry v2 image catalog (versioned path)",
1084
+ },
1085
+ {
1086
+ path: "/api/v1/",
1087
+ category: "api-docs",
1088
+ severity: "low",
1089
+ description: "REST API v1 root",
1090
+ },
1091
+ {
1092
+ path: "/api/v2/",
1093
+ category: "api-docs",
1094
+ severity: "low",
1095
+ description: "REST API v2 root",
1096
+ },
1097
+ {
1098
+ path: "/redoc",
1099
+ category: "api-docs",
1100
+ severity: "medium",
1101
+ description: "ReDoc API documentation viewer",
1102
+ },
1103
+ {
1104
+ path: "/docs",
1105
+ category: "api-docs",
1106
+ severity: "medium",
1107
+ description: "FastAPI / generic API documentation",
1108
+ },
1109
+ // ═══════════════════════════════════════════════════════════════════════
1110
+ // CLOUD METADATA
1111
+ // ═══════════════════════════════════════════════════════════════════════
1112
+ {
1113
+ path: "/latest/meta-data/",
1114
+ category: "cloud",
1115
+ severity: "critical",
1116
+ description: "AWS EC2 Instance Metadata Service (IMDSv1)",
1117
+ },
1118
+ {
1119
+ path: "/latest/meta-data/iam/security-credentials/",
1120
+ category: "cloud",
1121
+ severity: "critical",
1122
+ description: "AWS IAM role temporary credentials via IMDS",
1123
+ },
1124
+ {
1125
+ path: "/latest/user-data/",
1126
+ category: "cloud",
1127
+ severity: "critical",
1128
+ description: "AWS EC2 user data script (may contain secrets)",
1129
+ },
1130
+ {
1131
+ path: "/latest/dynamic/instance-identity/document",
1132
+ category: "cloud",
1133
+ severity: "high",
1134
+ description: "AWS instance identity document",
1135
+ },
1136
+ {
1137
+ path: "/.aws/credentials",
1138
+ category: "cloud",
1139
+ severity: "critical",
1140
+ description: "AWS CLI credentials file",
1141
+ },
1142
+ {
1143
+ path: "/.aws/config",
1144
+ category: "cloud",
1145
+ severity: "high",
1146
+ description: "AWS CLI configuration",
1147
+ },
1148
+ {
1149
+ path: "/computeMetadata/v1/",
1150
+ category: "cloud",
1151
+ severity: "critical",
1152
+ description: "GCP instance metadata endpoint",
1153
+ },
1154
+ {
1155
+ path: "/computeMetadata/v1/instance/service-accounts/default/token",
1156
+ category: "cloud",
1157
+ severity: "critical",
1158
+ description: "GCP service account access token via metadata",
1159
+ },
1160
+ {
1161
+ path: "/computeMetadata/v1/project/project-id",
1162
+ category: "cloud",
1163
+ severity: "high",
1164
+ description: "GCP project ID via metadata",
1165
+ },
1166
+ {
1167
+ path: "/metadata/instance",
1168
+ category: "cloud",
1169
+ severity: "critical",
1170
+ description: "Azure Instance Metadata Service",
1171
+ },
1172
+ {
1173
+ path: "/metadata/instance/compute",
1174
+ category: "cloud",
1175
+ severity: "high",
1176
+ description: "Azure VM compute metadata",
1177
+ },
1178
+ {
1179
+ path: "/metadata/instance/network",
1180
+ category: "cloud",
1181
+ severity: "high",
1182
+ description: "Azure VM network metadata",
1183
+ },
1184
+ {
1185
+ path: "/.azure/",
1186
+ category: "cloud",
1187
+ severity: "high",
1188
+ description: "Azure CLI configuration directory",
1189
+ },
1190
+ {
1191
+ path: "/.gcloud/",
1192
+ category: "cloud",
1193
+ severity: "high",
1194
+ description: "Google Cloud CLI configuration directory",
1195
+ },
1196
+ {
1197
+ path: "/opc/v1/instance/",
1198
+ category: "cloud",
1199
+ severity: "critical",
1200
+ description: "Oracle Cloud instance metadata",
1201
+ },
1202
+ {
1203
+ path: "/metadata/v1.json",
1204
+ category: "cloud",
1205
+ severity: "critical",
1206
+ description: "DigitalOcean droplet metadata",
1207
+ },
1208
+ // ═══════════════════════════════════════════════════════════════════════
1209
+ // CI/CD CONFIGURATION
1210
+ // ═══════════════════════════════════════════════════════════════════════
1211
+ {
1212
+ path: "/Jenkinsfile",
1213
+ category: "ci-cd",
1214
+ severity: "high",
1215
+ description: "Jenkins pipeline definition",
1216
+ },
1217
+ {
1218
+ path: "/.github/workflows/",
1219
+ category: "ci-cd",
1220
+ severity: "medium",
1221
+ description: "GitHub Actions workflow directory",
1222
+ },
1223
+ {
1224
+ path: "/.github/workflows/ci.yml",
1225
+ category: "ci-cd",
1226
+ severity: "medium",
1227
+ description: "GitHub Actions CI workflow",
1228
+ },
1229
+ {
1230
+ path: "/.github/workflows/deploy.yml",
1231
+ category: "ci-cd",
1232
+ severity: "high",
1233
+ description: "GitHub Actions deployment workflow",
1234
+ },
1235
+ {
1236
+ path: "/.gitlab-ci.yml",
1237
+ category: "ci-cd",
1238
+ severity: "high",
1239
+ description: "GitLab CI/CD pipeline configuration",
1240
+ },
1241
+ {
1242
+ path: "/.circleci/config.yml",
1243
+ category: "ci-cd",
1244
+ severity: "high",
1245
+ description: "CircleCI pipeline configuration",
1246
+ },
1247
+ {
1248
+ path: "/.travis.yml",
1249
+ category: "ci-cd",
1250
+ severity: "medium",
1251
+ description: "Travis CI configuration",
1252
+ },
1253
+ {
1254
+ path: "/Dockerfile",
1255
+ category: "ci-cd",
1256
+ severity: "medium",
1257
+ description: "Docker image build instructions",
1258
+ },
1259
+ {
1260
+ path: "/docker-compose.yml",
1261
+ category: "ci-cd",
1262
+ severity: "high",
1263
+ description: "Docker Compose service definitions — may contain credentials",
1264
+ },
1265
+ {
1266
+ path: "/docker-compose.override.yml",
1267
+ category: "ci-cd",
1268
+ severity: "high",
1269
+ description: "Docker Compose override — may contain dev credentials",
1270
+ },
1271
+ {
1272
+ path: "/docker-compose.prod.yml",
1273
+ category: "ci-cd",
1274
+ severity: "high",
1275
+ description: "Docker Compose production configuration",
1276
+ },
1277
+ {
1278
+ path: "/.drone.yml",
1279
+ category: "ci-cd",
1280
+ severity: "high",
1281
+ description: "Drone CI pipeline configuration",
1282
+ },
1283
+ {
1284
+ path: "/bitbucket-pipelines.yml",
1285
+ category: "ci-cd",
1286
+ severity: "high",
1287
+ description: "Bitbucket Pipelines configuration",
1288
+ },
1289
+ {
1290
+ path: "/azure-pipelines.yml",
1291
+ category: "ci-cd",
1292
+ severity: "high",
1293
+ description: "Azure DevOps pipeline configuration",
1294
+ },
1295
+ {
1296
+ path: "/Procfile",
1297
+ category: "ci-cd",
1298
+ severity: "medium",
1299
+ description: "Heroku process definitions",
1300
+ },
1301
+ {
1302
+ path: "/app.yaml",
1303
+ category: "ci-cd",
1304
+ severity: "high",
1305
+ description: "Google App Engine configuration",
1306
+ },
1307
+ {
1308
+ path: "/vercel.json",
1309
+ category: "ci-cd",
1310
+ severity: "medium",
1311
+ description: "Vercel deployment configuration",
1312
+ },
1313
+ {
1314
+ path: "/netlify.toml",
1315
+ category: "ci-cd",
1316
+ severity: "medium",
1317
+ description: "Netlify deployment configuration",
1318
+ },
1319
+ {
1320
+ path: "/fly.toml",
1321
+ category: "ci-cd",
1322
+ severity: "medium",
1323
+ description: "Fly.io deployment configuration",
1324
+ },
1325
+ {
1326
+ path: "/render.yaml",
1327
+ category: "ci-cd",
1328
+ severity: "medium",
1329
+ description: "Render deployment blueprint",
1330
+ },
1331
+ {
1332
+ path: "/terraform.tfstate",
1333
+ category: "ci-cd",
1334
+ severity: "critical",
1335
+ description: "Terraform state file — contains infrastructure secrets",
1336
+ },
1337
+ {
1338
+ path: "/terraform.tfvars",
1339
+ category: "ci-cd",
1340
+ severity: "critical",
1341
+ description: "Terraform variable values — may contain secrets",
1342
+ },
1343
+ {
1344
+ path: "/.terraform/",
1345
+ category: "ci-cd",
1346
+ severity: "high",
1347
+ description: "Terraform working directory",
1348
+ },
1349
+ {
1350
+ path: "/pulumi.yaml",
1351
+ category: "ci-cd",
1352
+ severity: "high",
1353
+ description: "Pulumi infrastructure configuration",
1354
+ },
1355
+ // ═══════════════════════════════════════════════════════════════════════
1356
+ // SECRETS / CREDENTIALS
1357
+ // ═══════════════════════════════════════════════════════════════════════
1358
+ {
1359
+ path: "/.npmrc",
1360
+ category: "secrets",
1361
+ severity: "critical",
1362
+ description: "npm configuration — may contain auth tokens",
1363
+ },
1364
+ {
1365
+ path: "/.yarnrc",
1366
+ category: "secrets",
1367
+ severity: "high",
1368
+ description: "Yarn configuration — may contain auth tokens",
1369
+ },
1370
+ {
1371
+ path: "/.pypirc",
1372
+ category: "secrets",
1373
+ severity: "critical",
1374
+ description: "PyPI credentials for package publishing",
1375
+ },
1376
+ {
1377
+ path: "/.docker/config.json",
1378
+ category: "secrets",
1379
+ severity: "critical",
1380
+ description: "Docker registry authentication configuration",
1381
+ },
1382
+ {
1383
+ path: "/id_rsa",
1384
+ category: "secrets",
1385
+ severity: "critical",
1386
+ description: "RSA private key (unprotected path)",
1387
+ },
1388
+ {
1389
+ path: "/id_rsa.pub",
1390
+ category: "secrets",
1391
+ severity: "medium",
1392
+ description: "RSA public key",
1393
+ },
1394
+ {
1395
+ path: "/id_ed25519",
1396
+ category: "secrets",
1397
+ severity: "critical",
1398
+ description: "Ed25519 private key (unprotected path)",
1399
+ },
1400
+ {
1401
+ path: "/.ssh/authorized_keys",
1402
+ category: "secrets",
1403
+ severity: "critical",
1404
+ description: "SSH authorized keys — reveals allowed public keys",
1405
+ },
1406
+ {
1407
+ path: "/.ssh/id_rsa",
1408
+ category: "secrets",
1409
+ severity: "critical",
1410
+ description: "SSH RSA private key",
1411
+ },
1412
+ {
1413
+ path: "/.ssh/known_hosts",
1414
+ category: "secrets",
1415
+ severity: "medium",
1416
+ description: "SSH known hosts — reveals connected servers",
1417
+ },
1418
+ {
1419
+ path: "/.htpasswd",
1420
+ category: "secrets",
1421
+ severity: "critical",
1422
+ description: "Apache HTTP Basic auth password hashes",
1423
+ },
1424
+ {
1425
+ path: "/.htaccess",
1426
+ category: "secrets",
1427
+ severity: "high",
1428
+ description: "Apache directory configuration — may reveal rewrite rules",
1429
+ },
1430
+ {
1431
+ path: "/.netrc",
1432
+ category: "secrets",
1433
+ severity: "critical",
1434
+ description: "FTP/machine credentials in plaintext",
1435
+ },
1436
+ {
1437
+ path: "/.pgpass",
1438
+ category: "secrets",
1439
+ severity: "critical",
1440
+ description: "PostgreSQL password file",
1441
+ },
1442
+ {
1443
+ path: "/.my.cnf",
1444
+ category: "secrets",
1445
+ severity: "critical",
1446
+ description: "MySQL client configuration with credentials",
1447
+ },
1448
+ {
1449
+ path: "/.mysql_history",
1450
+ category: "secrets",
1451
+ severity: "high",
1452
+ description: "MySQL command history — may contain queries with credentials",
1453
+ },
1454
+ {
1455
+ path: "/.bash_history",
1456
+ category: "secrets",
1457
+ severity: "high",
1458
+ description: "Bash command history — may reveal secrets in CLI args",
1459
+ },
1460
+ {
1461
+ path: "/.zsh_history",
1462
+ category: "secrets",
1463
+ severity: "high",
1464
+ description: "Zsh command history",
1465
+ },
1466
+ {
1467
+ path: "/keystore.jks",
1468
+ category: "secrets",
1469
+ severity: "critical",
1470
+ description: "Java KeyStore file",
1471
+ },
1472
+ {
1473
+ path: "/truststore.jks",
1474
+ category: "secrets",
1475
+ severity: "high",
1476
+ description: "Java TrustStore file",
1477
+ },
1478
+ {
1479
+ path: "/.p12",
1480
+ category: "secrets",
1481
+ severity: "critical",
1482
+ description: "PKCS#12 certificate bundle with private key",
1483
+ },
1484
+ {
1485
+ path: "/server.key",
1486
+ category: "secrets",
1487
+ severity: "critical",
1488
+ description: "TLS/SSL private key",
1489
+ },
1490
+ {
1491
+ path: "/server.pem",
1492
+ category: "secrets",
1493
+ severity: "critical",
1494
+ description: "TLS/SSL certificate (may include private key)",
1495
+ },
1496
+ {
1497
+ path: "/private.key",
1498
+ category: "secrets",
1499
+ severity: "critical",
1500
+ description: "Generic private key file",
1501
+ },
1502
+ {
1503
+ path: "/.gnupg/",
1504
+ category: "secrets",
1505
+ severity: "critical",
1506
+ description: "GPG keyring directory",
1507
+ },
1508
+ {
1509
+ path: "/.kube/config",
1510
+ category: "secrets",
1511
+ severity: "critical",
1512
+ description: "Kubernetes kubeconfig with cluster credentials",
1513
+ },
1514
+ {
1515
+ path: "/wp-content/debug.log",
1516
+ category: "secrets",
1517
+ severity: "high",
1518
+ description: "WordPress debug log — may contain errors with credentials",
1519
+ },
1520
+ {
1521
+ path: "/storage/logs/laravel.log",
1522
+ category: "secrets",
1523
+ severity: "high",
1524
+ description: "Laravel application log — may contain stack traces with secrets",
1525
+ },
1526
+ {
1527
+ path: "/error.log",
1528
+ category: "secrets",
1529
+ severity: "medium",
1530
+ description: "Generic error log file",
1531
+ },
1532
+ {
1533
+ path: "/access.log",
1534
+ category: "secrets",
1535
+ severity: "medium",
1536
+ description: "HTTP access log — reveals URL patterns and IPs",
1537
+ },
1538
+ ];
1539
+ //# sourceMappingURL=sensitive-paths.js.map