diff --git a/misconfiguration/iis-internal-ip-disclosure.yaml b/misconfiguration/iis-internal-ip-disclosure.yaml
index 64cdb7597e..60744893ae 100644
--- a/misconfiguration/iis-internal-ip-disclosure.yaml
+++ b/misconfiguration/iis-internal-ip-disclosure.yaml
@@ -3,28 +3,31 @@ id: iis-internal-ip-disclosure
 info:
   name: IIS Internal IP Disclosure Template
   author: WillD96
-  severity: none
-  tags: iis, config, disclosure
+  severity: info
+  tags: iis,misconfig,disclosure
+  reference: https://support.kemptechnologies.com/hc/en-us/articles/203522429-How-to-Mitigate-Against-Internal-IP-Address-Domain-Name-Disclosure-In-Real-Server-Redirect
 
 requests:
   - raw:
       - |+
         GET / HTTP/1.0
+        Host:
         User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0
         Accept: */*
 
-
-    unsafe: true
+    unsafe: true # Use Unsafe HTTP library for malformed HTTP requests.
+    matchers-condition: and
     matchers:
       - type: regex
         regex:
           - '([0-9]{1,3}[\.]){3}[0-9]{1,3}'
-        condition: and
+
       - type: status
         status:
           - 302
+
     extractors:
       - type: regex
         part: header
         regex:
-          - '([0-9]{1,3}[\.]){3}[0-9]{1,3}'
+          - '([0-9]{1,3}[\.]){3}[0-9]{1,3}'
\ No newline at end of file