How this template works
APIs Selection
The API selection filters in this template specify the criteria for selecting the API endpoints to be tested. In this case, the filters include the response code range (between 200 and 299) and the extraction of the "url" variable from the response.
Execute request
The execute section of the template defines the type of request to be executed. In this case, it is a single request. The request includes a modification of the URL using the "urlPaths" word list, which contains two possible paths for the known_hosts file.
Validation
The validation section specifies the criteria for validating the response of the executed request. It checks that the response code is equal to 200 and that the response payload contains at least one of the specified SSH key types ("ssh-dss", "ssh-ed25519", "ssh-rsa", "ecdsa-sha2-nistp256").
Frequently asked questions
What is the purpose of the SSH Known Hosts array in this test
How does exposing SSH known_hosts files increase the risk of unauthorized access and potential compromise
What is the impact severity level assigned to the SSH_KNOWN_HOSTS subcategory
What are the URL paths that are checked for the presence of SSH known_hosts files
What are the expected response code and payload for a valid SSH known_hosts file
What is the purpose of the "validate" section in the test configuration
"The text editor in Akto is absolutely remarkable. Its user-friendly YAML format strikes the perfect balance between simplicity and power. With intuitive features like 'API selection filter', 'Execute', Validate' creating test rules becomes incredibly easy. Akto's test editor is a game-changer, enabling seamless creation of highly personalized and effective tests that could meet the needs of any modern day organization. "
Security team,
Rippling
Explore other tests
eSMTP - Config Discovery
Nginx - Git Configuration Exposure
Laravel - Sensitive Information Disclosure
Docker Container - Misconfiguration Exposure
Msmtp - Config Exposure
Parameters.yml - File Discovery
Mongo Express - Unauthenticated Access
Apache Airflow Configuration Exposure
Dockerrun AWS Configuration Exposure
Apache Config file disclosure
Appspec Yml Disclosure
CGI script environment variable
