Update and rename redpanda-console-detection.yaml to http/misconfigur…

…ation/redpanda-console.yaml

http/misconfiguration/redpanda-console.yaml

@@ -0,0 +1,33 @@
+id: redpanda-console
+
+info:
+  name: Redpanda Console - Exposure
+  author: kh4sh3i
+  severity: medium
+  description: |
+    Unauthorized access to the Redpanda Console could allow attackers to view or manipulate streaming data, monitor clusters, or access configuration information, leading to potential data leaks or service disruption.
+  impact: |
+    Exposing the Redpanda Console to the public can result in unauthorized access, leading to data leaks, misconfigurations, or even denial of service attacks on the streaming infrastructure.
+  reference:
+    - https://github.com/redpanda-data/console
+  metadata:
+    verified: true
+    max-request: 1
+    shodan-query: title:"Redpanda Console"
+  tags: misconfig,redpanda,console,streaming
+
+http:
+  - method: GET
+    path:
+      - "{{BaseURL}}/overview"
+
+    matchers-condition: and
+    matchers:
+      - type: word
+        part: body
+        words:
+          - "Redpanda Console"
+
+      - type: status
+        status:
+          - 200