mirror of
https://github.com/Ekultek/Zeus-Scanner.git
synced 2026-03-11 08:55:51 +00:00
26 lines
877 B
Python
26 lines
877 B
Python
import re
|
|
|
|
from lib.core.common import HTTP_HEADER
|
|
|
|
|
|
__item__ = "Amazon Web Services Web Application Firewall (Amazon)"
|
|
|
|
|
|
def detect(content, **kwargs):
|
|
headers = kwargs.get("headers", None)
|
|
content = str(content)
|
|
detection_schema = (
|
|
re.compile(r"<RequestId>[0-9a-zA-Z]{16,25}<.RequestId>", re.I),
|
|
re.compile(r"<Error><Code>AccessDenied<.Code>", re.I),
|
|
re.compile(r"\bAWS", re.I),
|
|
re.compile(r"x.amz.id.\d+", re.I),
|
|
re.compile(r"x.amz.request.id", re.I),
|
|
re.compile(r"amazon.\d+", re.I)
|
|
)
|
|
for detection in detection_schema:
|
|
if detection.search(content) is not None:
|
|
return True
|
|
if detection.search(headers.get(HTTP_HEADER.SERVER, "")) is not None:
|
|
return True
|
|
if detection.search(headers.get(HTTP_HEADER.X_POWERED_BY, "")) is not None:
|
|
return True
|