id: exposed-kafdrop

info:
  name: Publicly exposed Kafdrop Interface
  author: dhiyaneshDk
  severity: low
  tags: exposure,misconfig,kafdrop

requests:
  - method: GET
    path:
      - '{{BaseURL}}'

    matchers:
      - type: word
        words:
          - "<title>Kafdrop: Broker List</title>"
          - "Kafka Cluster Overview"
        condition: and