From 7911ded363d86911365f48b1ec4dceffa62f7199 Mon Sep 17 00:00:00 2001
From: Dhiyaneshwaran <leedhiyanesh@gmail.com>
Date: Tue, 14 Nov 2023 10:27:31 +0530
Subject: [PATCH 1/3] Create node-express-status.yaml

---
 .../misconfiguration/node-express-status.yaml | 27 +++++++++++++++++++
 1 file changed, 27 insertions(+)
 create mode 100644 http/misconfiguration/node-express-status.yaml

diff --git a/http/misconfiguration/node-express-status.yaml b/http/misconfiguration/node-express-status.yaml
new file mode 100644
index 00000000000..f6811b7c8da
--- /dev/null
+++ b/http/misconfiguration/node-express-status.yaml
@@ -0,0 +1,27 @@
+id: node-express-status
+
+info:
+  name: Node Express Status Exposure
+  author: DhiyaneshDk
+  severity: low
+  metadata:
+    verified: true
+    max-request: 1
+    fofa-query: body="azuredeploy.json"
+  tags: node,express,misconfig,status
+
+http:
+  - method: GET
+    path:
+      - "{{BaseURL}}"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        words:
+          - "<title>Express Status</title>"
+        part: body
+
+      - type: status
+        status:
+          - 200

From d821f2e266a4bf3159c1c8af5f5ae986bbd5f186 Mon Sep 17 00:00:00 2001
From: Dhiyaneshwaran <leedhiyanesh@gmail.com>
Date: Tue, 14 Nov 2023 15:39:05 +0530
Subject: [PATCH 2/3] metadata update

---
 http/misconfiguration/node-express-status.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/http/misconfiguration/node-express-status.yaml b/http/misconfiguration/node-express-status.yaml
index f6811b7c8da..b0574dc9add 100644
--- a/http/misconfiguration/node-express-status.yaml
+++ b/http/misconfiguration/node-express-status.yaml
@@ -7,7 +7,7 @@ info:
   metadata:
     verified: true
     max-request: 1
-    fofa-query: body="azuredeploy.json"
+    fofa-query: title="Express Status"
   tags: node,express,misconfig,status
 
 http:

From b4ca536d0782a1de76616540ae3a51f094525ebd Mon Sep 17 00:00:00 2001
From: Ritik Chaddha <44563978+ritikchaddha@users.noreply.github.com>
Date: Thu, 16 Nov 2023 15:52:53 +0530
Subject: [PATCH 3/3] Update node-express-status.yaml

---
 http/misconfiguration/node-express-status.yaml | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/http/misconfiguration/node-express-status.yaml b/http/misconfiguration/node-express-status.yaml
index b0574dc9add..cec1f013ccb 100644
--- a/http/misconfiguration/node-express-status.yaml
+++ b/http/misconfiguration/node-express-status.yaml
@@ -1,12 +1,13 @@
 id: node-express-status
 
 info:
-  name: Node Express Status Exposure
+  name: Node Express Status - Detect
   author: DhiyaneshDk
   severity: low
   metadata:
     verified: true
     max-request: 1
+    shodan-query: title:"Express Status"
     fofa-query: title="Express Status"
   tags: node,express,misconfig,status
 
@@ -18,9 +19,11 @@ http:
     matchers-condition: and
     matchers:
       - type: word
-        words:
-          - "<title>Express Status</title>"
         part: body
+        words:
+          - "Express Status"
+          - "CPU Usage"
+        condition: and
 
       - type: status
         status: