diff --git a/misconfiguration/drupal-user-enum-ajax.yaml b/misconfiguration/drupal-user-enum-ajax.yaml
index ca4696a9d9..041d0eee48 100644
--- a/misconfiguration/drupal-user-enum-ajax.yaml
+++ b/misconfiguration/drupal-user-enum-ajax.yaml
@@ -15,19 +15,24 @@ requests:
       - "{{BaseURL}}/?q=views/ajax/autocomplete/user/a"
     headers:
       User-Agent: "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:43.0) Gecko/20100101 Firefox/43.0"
+
     matchers-condition: and
     matchers:
-      - type: regex
-        regex:
-          - '(?i)\{\"a'
-        part: body
       - type: word
         words:
-          - "Content-Type: application/json"
+          - '":"a.'
+          - '":"A.'
+        part: body
+
+      - type: word
+        words:
+          - "application/json"
         part: header
+
       - type: status
         status:
           - 200
+
     extractors:
       - type: regex
         part: body