diff --git a/http/misconfiguration/installer/chatwoot-installer.yaml b/http/misconfiguration/installer/chatwoot-installer.yaml
new file mode 100644
index 000000000000..e4b54b646b84
--- /dev/null
+++ b/http/misconfiguration/installer/chatwoot-installer.yaml
@@ -0,0 +1,31 @@
+id: chatwoot-installer
+
+info:
+  name: Chatwoot - Installation
+  author: 0x_Akoko
+  severity: high
+  description: |
+   Detected chatwoot instance with the initial installation onboarding page accessible at /installation/onboarding, enabling unauthenticated users to create the first Super Admin account and gain full platform control.
+  reference:
+    - https://github.com/chatwoot/chatwoot
+    - https://www.chatwoot.com/docs/self-hosted/monitoring/super-admin-sidekiq
+  metadata:
+    verified: true
+    max-request: 1
+    vendor: chatwoot
+    product: chatwoot
+    shodan-query: http.title:"SuperAdmin | Chatwoot"
+    fofa-query: title="SuperAdmin | Chatwoot"
+  tags: misconfig,install,exposure,chatwoot,unauth
+
+http:
+  - method: GET
+    path:
+      - "{{BaseURL}}/installation/onboarding"
+
+    matchers:
+      - type: dsl
+        dsl:
+          - 'contains_all(body, "SuperAdmin | Chatwoot", "Howdy, Welcome to Chatwoot", "Finish Setup")'
+          - 'status_code == 200'
+        condition: and