The F5 cookie decoder doesn't detect IPs in the 10.x.x.x space for non-encrypted cookies.

This fixes the regex pattern, see also https://github.com/drwetter/F5-BIGIP-Decoder/pull/4/files
2024-12-28 12:29:44 +01:00 · 2024-10-09 15:47:50 +02:00 · 2024-10-09 15:47:50 +02:00 · 6110843fd0
commit 6110843fd0
parent 541d3ff07a
1 changed files with 1 additions and 1 deletions
--- a/testssl.sh
+++ b/testssl.sh
@ -3284,7 +3284,7 @@ sub_f5_bigip_check() {
          [[ -z "$cookievalue" ]] && break
          cookievalue=${cookievalue/;/}
          debugme echo $cookiename : $cookievalue
-          if grep -Eq '[0-9]{9,10}\.[0-9]{3,5}\.0000' <<< "$cookievalue"; then
+          if grep -Eq '[0-9]{8,10}\.[0-9]{3,5}\.0000' <<< "$cookievalue"; then
               ip="$(f5_ip_oldstyle "$cookievalue")"
               port="$(f5_port_decode $cookievalue)"
               out "${spaces}F5 cookie (default IPv4 pool member): "; pr_italic "$cookiename "; prln_svrty_medium "${ip}:${port}"