Merge pull request #10287 from icarot/main

Create apache-ozone-detect.yaml and apache-ozone-conf.yaml

http/exposures/configs/apache-ozone-conf.yaml

@@ -0,0 +1,39 @@
+id: apache-ozone-conf
+
+info:
+  name: Apache Ozone - Exposure
+  author: icarot
+  severity: info
+  description: |
+    Detects if path /conf of Apache Ozone web application is exposed.
+  classification:
+    cpe: cpe:2.3:a:apache:ozone:-:*:*:*:*:*:*:*
+  metadata:
+    max-request: 1
+    vendor: apache
+    product: ozone
+    shodan-query: title:"Apache Ozone"
+  tags: tech,ozone,apache,detect
+
+http:
+  - method: GET
+    path:
+      - "{{BaseURL}}/conf"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - '<source>ozone-default.xml</source>'
+          - 'ozone'
+        condition: and
+
+      - type: word
+        part: content_type
+        words:
+          - 'text/xml'
+
+      - type: status
+        status:
+          - 200

http/technologies/apache/apache-ozone-detect.yaml

@@ -0,0 +1,31 @@
+id: apache-ozone-detect
+
+info:
+  name: Apache Ozone - Detect
+  author: icarot
+  severity: info
+  description: |
+    Detects a Apache Ozone web application, a scalable, redundant, and distributed object store for Hadoop and Cloud-native environments.
+  classification:
+    cpe: cpe:2.3:a:apache:ozone:-:*:*:*:*:*:*:*
+  metadata:
+    max-request: 1
+    vendor: apache
+    product: ozone
+    shodan-query: title:"Apache Ozone"
+  tags: tech,ozone,apache,detect
+
+http:
+  - method: GET
+    path:
+      - "{{BaseURL}}/static/"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - 'Apache Ozone</title>'
+
+      - type: status
+        status:
+          - 200