id: apache-drill-exposure

info:
  name: Apache Drill Exposure
  author: DhiyaneshDK
  severity: low
  description: Apache Drill is exposed.
  classification:
    cpe: cpe:2.3:a:apache:drill:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: apache
    product: drill
    shodan-query: title:"Apache Drill"
  tags: misconfig,exposure,apache,drill

http:
  - method: GET
    path:
      - '{{BaseURL}}'

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - '<title>Apache Drill</title>'

      - type: word
        part: header
        words:
          - "text/html"

      - type: status
        status:
          - 200
# digest: 4b0a00483046022100f38abe0afb3e6a2c1b4f74c2659bccf7f092ca1370ff2bd88300230f3e0cb995022100f954bb3f80eb572a61f9b86c406a0341028257e7345b34a984f0d78a6cf431d3:922c64590222798bb761d5b6d8e72950