From efb46d961353528e3d4ddbbbd442c701ced8f144 Mon Sep 17 00:00:00 2001
From: Rishi <rishi@rxerium.com>
Date: Sun, 4 Aug 2024 21:17:10 +0100
Subject: [PATCH] law enforcement site seized detection

---
 http/exposed-panels/seized-site.yaml | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)
 create mode 100644 http/exposed-panels/seized-site.yaml

diff --git a/http/exposed-panels/seized-site.yaml b/http/exposed-panels/seized-site.yaml
new file mode 100644
index 0000000000..dd397c9884
--- /dev/null
+++ b/http/exposed-panels/seized-site.yaml
@@ -0,0 +1,27 @@
+id: seized-site
+
+info:
+  name: Seized Site
+  author: rxerium
+  severity: info
+  description: This website has been seized by law enforcement
+  metadata:
+    shodan-query:
+      - title:"THIS WEBSITE HAS BEEN SEIZED"
+  tags: exposure,seized
+
+http:
+  - method: GET
+    path:
+      - "{{BaseURL}}"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - "THIS WEBSITE HAS BEEN SEIZED"
+
+      - type: status
+        status:
+          - 200
\ No newline at end of file