nuclei-templates/misconfiguration/http-missing-security-heade...

135 lines
3.1 KiB
YAML
Raw Normal View History

2021-07-28 12:40:20 +00:00
id: http-missing-security-headers
info:
name: HTTP Missing Security Headers
author: socketz,geeknik,G4L1T0,convisoappsec,kurohost,dawid-czarnecki
2021-07-28 12:40:20 +00:00
severity: info
description: It searches for missing security headers, but obviously, could be so less generic and could be useless for Bug Bounty.
tags: misconfig,generic
2021-07-28 12:40:20 +00:00
requests:
- method: GET
path:
- "{{BaseURL}}"
2021-09-03 16:54:11 +00:00
2021-07-28 12:40:20 +00:00
redirects: true
max-redirects: 3
matchers-condition: or
matchers:
2021-09-03 16:54:11 +00:00
- type: regex
name: strict-transport-security
regex:
- "(?i)strict-transport-security"
2021-07-28 12:40:20 +00:00
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: content-security-policy
regex:
- "(?i)content-security-policy"
2021-07-28 12:40:20 +00:00
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: permission-policy
regex:
- "(?i)permission-policy"
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: x-frame-options
regex:
- "(?i)x-frame-options"
2021-07-28 12:40:20 +00:00
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: x-content-type-options
regex:
- "(?i)x-content-type-options"
2021-07-28 12:40:20 +00:00
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: x-permitted-cross-domain-policies
regex:
- "(?i)x-permitted-cross-domain-policies"
2021-07-28 12:40:20 +00:00
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: referrer-policy
regex:
- "(?i)referrer-policy"
2021-07-28 12:40:20 +00:00
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: clear-site-data
regex:
- "(?i)clear-site-data"
2021-07-28 12:40:20 +00:00
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: cross-origin-embedder-policy
regex:
- "(?i)cross-origin-embedder-policy"
2021-07-28 12:40:20 +00:00
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: cross-origin-opener-policy
regex:
- "(?i)cross-origin-opener-policy"
2021-07-28 12:40:20 +00:00
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: cross-origin-resource-policy
regex:
- "(?i)cross-origin-resource-policy"
2021-07-28 12:40:20 +00:00
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: access-control-allow-origin
regex:
- "(?i)access-control-allow-origin"
2021-07-28 12:40:20 +00:00
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: access-control-allow-credentials
regex:
- "(?i)access-control-allow-credentials"
2021-07-28 12:40:20 +00:00
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: access-control-expose-headers
regex:
- "(?i)access-control-expose-headers"
2021-07-28 12:40:20 +00:00
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: access-control-max-age
regex:
- "(?i)access-control-max-age"
2021-07-28 12:40:20 +00:00
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: access-control-allow-methods
regex:
- "(?i)access-control-allow-methods"
2021-07-28 12:40:20 +00:00
negative: true
part: header
2021-09-03 16:54:11 +00:00
- type: regex
name: access-control-allow-headers
regex:
- "(?i)access-control-allow-headers"