Exposed ElasticSearch TL;DR: Port 9200 open without auth → full _search and _cluster access; sometimes index-write for persistence. Stub — to be filled in. What it is TODO Preconditions / where it applies TODO Technique TODO Detection and defence TODO References TODO