Using Google bots as an attack vector | Invicti
Tags
attack-pattern: Data Malicious Link - T1204.001 Malware - T1587.001 Malware - T1588.001 Search Engines - T1593.002 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID bd543f3e-f2b9-48d2-8532-0685ec285abf
Fingerprint 1d22b58101e67b81
Analysis status DONE
Considered CTI value 0
Text language
Published Nov. 8, 2018, 4:35 p.m.
Added to db Jan. 18, 2023, 11:31 p.m.
Last updated Nov. 17, 2024, 5:55 p.m.
Headline Using Google bots as an attack vector
Title Using Google bots as an attack vector | Invicti
Detected Hints/Tags/Attributes 39/1/11
Source URLs
Redirection Url
Details Source https://www.netsparker.com/blog/web-security/using-google-bots-attack-vector/
URL Provider
Details Provider Source level domain
Details netsparker.com www.netsparker.com
Attributes
Details Type #Events CTI Value
Details CVE 26 
cve-2018-11776
Details CVE 122 
cve-2017-5638
Details Domain 2 
victim-address.com
Details Domain 206 
www.example.com
Details Domain 1 
www.functravel.com
Details Url 2 
http://victim-address.com/exploit-payload
Details Url 1 
http://www.example.com/hello/index.action
Details Url 1 
http://www.example.com//index.action
Details Url 1 
http://your-struts-instance/${4*4}/help.action
Details Url 1 
http://your-struts-instance/16/date.action
Details Url 1 
http://www.functravel.com