id: ray-dashboard

info:
  name: Ray Dashboard Exposure
  author: DhiyaneshDk
  severity: critical
  description: Ray Dashboard is exposed.
  metadata:
    verified: true
    max-request: 1
    shodan-query: title:"Ray Dashboard"
  tags: misconfig,exposure,ray

http:
  - method: GET
    path:
      - "{{BaseURL}}"

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "Ray Dashboard"
          - "webpackJsonpray-dashboard-client"
        condition: and

      - type: status
        status:
          - 200
# digest: 4a0a00473045022100dd33631ae13e692dba3059141a502b0205f85e26f696372ca654d2605f3e912802204c3ffe062784966281bbd6ab1e5ab8f797beef09d5c1765d31ffa3ba0680f7dd:922c64590222798bb761d5b6d8e72950