From 0ec76d40d1494da2259d0dbe34b3edd9466671cc Mon Sep 17 00:00:00 2001
From: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com>
Date: Wed, 14 Jun 2023 22:49:46 +0530
Subject: [PATCH] updated matcher

---
 http/exposures/configs/aws-config.yaml | 20 ++++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/http/exposures/configs/aws-config.yaml b/http/exposures/configs/aws-config.yaml
index 7e6889f667..04fe7e3263 100644
--- a/http/exposures/configs/aws-config.yaml
+++ b/http/exposures/configs/aws-config.yaml
@@ -9,9 +9,9 @@ info:
     cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
     cvss-score: 5.3
     cwe-id: CWE-200
-  tags: config,exposure
   metadata:
-    max-request: 1
+    verified: true
+  tags: config,exposure,aws,credential
 
 http:
   - method: GET
@@ -20,15 +20,15 @@ http:
 
     matchers-condition: and
     matchers:
-      - type: word
-        words:
-          - "[default]"
+      - type: regex
+        regex:
+          - 'aws_access_key_id\s*=\s*'
+          - 'region\s*=\s*'
 
-      - type: dsl
-        dsl:
-          - "!contains(tolower(body), '<html')"
-          - "!contains(tolower(body), '<body')"
-        condition: and
+      - type: word
+        part: body
+        words:
+          - '[default]'
 
       - type: status
         status: