From 934d899f5e93197d8e09337db0e6cf60f88cc4d3 Mon Sep 17 00:00:00 2001
From: Pham Sy Minh <59408894+shelld3v@users.noreply.github.com>
Date: Mon, 26 Jul 2021 12:53:34 +0700
Subject: [PATCH] Reduce false positives

---
 misconfiguration/shell-history.yaml | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/misconfiguration/shell-history.yaml b/misconfiguration/shell-history.yaml
index fc007125d0..cec582f3c6 100644
--- a/misconfiguration/shell-history.yaml
+++ b/misconfiguration/shell-history.yaml
@@ -21,15 +21,16 @@ requests:
     matchers:
       - type: word
         words:
+          - "ls"
+          - "mkdir "
           - "chmod "
-          - "exit"
-          - "kill "
+          - "mv "
           - "nano "
           - "vim "
           - "pico "
           - "sudo "
-          - "rm "
           - "cd "
+          - "cp "
           - "ps aux "
         condition: or
 
@@ -40,6 +41,8 @@ requests:
       - type: word
         words:
           - "application/javascript"
+          - "application/json"
+          - "application/xml"
           - "html>"
           - "text/html"
         part: all