How this template works
The API selection filters in this template specify the criteria for selecting the API endpoints to be tested. In this case, the filters include the response code range (between 200 and 299) and the extraction of the "url" variable from the response.
The execute section of the template defines the type of request to be executed. In this case, it is a single request. The request includes a modification of the URL using the "urlPaths" word list, which contains two possible paths for the known_hosts file.
The validation section specifies the criteria for validating the response of the executed request. It checks that the response code is equal to 200 and that the response payload contains at least one of the specified SSH key types ("ssh-dss", "ssh-ed25519", "ssh-rsa", "ecdsa-sha2-nistp256").
Frequently asked questions
What is the purpose of the SSH Known Hosts array in this test
How does exposing SSH known_hosts files increase the risk of unauthorized access and potential compromise
What is the impact severity level assigned to the SSH_KNOWN_HOSTS subcategory
What are the URL paths that are checked for the presence of SSH known_hosts files
What are the expected response code and payload for a valid SSH known_hosts file
What is the purpose of the "validate" section in the test configuration