From ab9015b5226630ad88dbfefd1c83b02bd592bf38 Mon Sep 17 00:00:00 2001
From: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com>
Date: Thu, 21 Dec 2023 12:49:50 +0530
Subject: [PATCH] Update h2o-dashboard.yaml

---
 http/misconfiguration/h2o/h2o-dashboard.yaml | 11 ++++-------
 1 file changed, 4 insertions(+), 7 deletions(-)

diff --git a/http/misconfiguration/h2o/h2o-dashboard.yaml b/http/misconfiguration/h2o/h2o-dashboard.yaml
index a442beac81..7b68d1039b 100644
--- a/http/misconfiguration/h2o/h2o-dashboard.yaml
+++ b/http/misconfiguration/h2o/h2o-dashboard.yaml
@@ -1,15 +1,15 @@
 id: h2o-dashboard
 
 info:
-  name: H2O Dashboard Exposure
+  name: H2O Dashboard - Exposure
   author: byt3bl33d3r
   severity: high
   description: |
     H2o dashboard by default has no authentication and can lead to RCE on the host.
   metadata:
-    shodan-query: title:"H2O Flow"
-    verified: true
     max-request: 1
+    verified: true
+    shodan-query: title:"H2O Flow"
   tags: misconfig,exposure,h2o,ml,unauth
 
 http:
@@ -18,17 +18,14 @@ http:
       - "{{BaseURL}}"
 
     redirects: true
-    max-redirects: 1
-
+    max-redirects: 2
     matchers-condition: and
     matchers:
       - type: word
         part: header
         words:
           - "X-H2o-Build-Project-Version"
-          - "X-H2o-Cluster-Good"
           - "X-H2o-Cluster-Id"
-          - "X-H2o-Rest-Api-Version-Max"
         condition: and
 
       - type: word