Skip to content

Commit

Permalink
feat(nethvoice): add new HTTP probing rule for '/janus/' path
Browse files Browse the repository at this point in the history
  • Loading branch information
@stephdl
stephdl committed Jan 17, 2025
1 parent f5e8e81 commit 9d0c242
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions imageroot/tainted/nethvoice-whitelist-http-probing.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,3 +15,4 @@ whitelist:
- evt.Meta.http_status == '404' && evt.Meta.http_verb == 'GET' && evt.Meta.http_path contains '/freepbx/rest/mobileapp/'
- evt.Meta.http_status == '403' && evt.Meta.http_verb == 'GET' && evt.Meta.http_path contains '/freepbx/rest/migration'
- evt.Meta.http_status == '403' && evt.Meta.http_verb == 'GET' && evt.Meta.http_path contains '/freepbx/rest/login' # dangerous, this field is done by a user that has not been authenticated
- evt.Meta.http_verb == 'GET' && evt.Meta.http_path contains '/janus/' # http code not provided

0 comments on commit 9d0c242

Please sign in to comment.