1023864892.yaml

id: postgresql
info:
  name: PostgreSQL DB
  author: nmap,cn-kali-team
  tags: detect,tech,postgresql,service
  severity: info
  metadata:
    operating_system: Windows
    product: postgresql
    rarity: 4
    vendor: postgresql
    verified: true
    version: 8.3.19
tcp:
- name: smbprog-neg
  inputs:
  - data: \0\0\0\xa4\xff\x53\x4d\x42\x72\0\0\0\0\x08\x01\x40\0\0\0\0\0\0\0\0\0\0\0\0\0\0\x40\x06\0\0\x01\0\0\x81\0\x02PC NETWORK PROGRAM 1.0\0\x02MICROSOFT NETWORKS 1.03\0\x02MICROSOFT NETWORKS 3.0\0\x02LANMAN1.0\0\x02LM1.2X002\0\x02Samba\0\x02NT LANMAN 1.0\0\x02NT LM 0.12\0
  host:
  - '{{Hostname}}'
  port: 42,88,135,139,445,660,1025,1027,1031,1112,3006,3900,5000,5009,5432,5555,5600,7461,9102,9103,18182,27000-27010
  extractors:
  - name: postgresql
    type: regex
    regex:
    - (?i)^E\0\0\0.S[^\0]+\0C0A000\0M.*?65363\.19778.*\0F\.\\src\\backend\\postmaster\\postmaster\.c\0L1514\0RProcessStartupPacket\0\0$