Add a check. I decided not to try to login in the check function in order to remain non-malicious.

However, this decision doesn't represent how modules should write their own check.

modules/exploits/multi/http/splunk_mappy_exec.rb

@@ -102,6 +102,19 @@ class Metasploit3 < Msf::Exploit::Remote
 		handler
 	end
 
+	def check
+		res = send_request_cgi(
+		{
+			'uri'     => '/en-US/account/login',
+			'method'  => 'GET'
+		}, 25)
+
+		if res.body =~ /Splunk Inc\. Splunk 4\.[0-2]\.[0-4] build [\d+]/
+			return Exploit::CheckCode::Appears
+		else
+			return Exploit::CheckCode::Safe
+		end
+	end
 
 	def do_login
 		res = send_request_cgi(