2021-07-28 12:40:20 +00:00
|
|
|
id: http-missing-security-headers
|
|
|
|
|
|
|
|
info:
|
|
|
|
name: HTTP Missing Security Headers
|
2021-09-03 17:05:58 +00:00
|
|
|
author: socketz,geeknik,G4L1T0,convisoappsec,kurohost,dawid-czarnecki
|
2021-07-28 12:40:20 +00:00
|
|
|
severity: info
|
2021-09-05 21:13:45 +00:00
|
|
|
description: It searches for missing security headers, but obviously, could be so less generic and could be useless for Bug Bounty.
|
2021-09-03 17:05:58 +00:00
|
|
|
tags: misconfig,generic
|
2021-07-28 12:40:20 +00:00
|
|
|
|
|
|
|
requests:
|
|
|
|
- method: GET
|
|
|
|
path:
|
|
|
|
- "{{BaseURL}}"
|
2021-09-03 16:54:11 +00:00
|
|
|
|
2021-07-28 12:40:20 +00:00
|
|
|
redirects: true
|
|
|
|
max-redirects: 3
|
|
|
|
matchers-condition: or
|
|
|
|
matchers:
|
2021-09-03 16:54:11 +00:00
|
|
|
- type: regex
|
|
|
|
name: strict-transport-security
|
|
|
|
regex:
|
|
|
|
- "(?i)strict-transport-security"
|
2021-07-28 12:40:20 +00:00
|
|
|
negative: true
|
|
|
|
part: header
|
2021-09-03 16:54:11 +00:00
|
|
|
|
|
|
|
- type: regex
|
|
|
|
name: content-security-policy
|
|
|
|
regex:
|
|
|
|
- "(?i)content-security-policy"
|
2021-07-28 12:40:20 +00:00
|
|
|
negative: true
|
|
|
|
part: header
|
2021-09-03 16:54:11 +00:00
|
|
|
|
2021-12-29 14:36:58 +00:00
|
|
|
- type: regex
|
|
|
|
name: permission-policy
|
|
|
|
regex:
|
|
|
|
- "(?i)permission-policy"
|
|
|
|
negative: true
|
|
|
|
part: header
|
|
|
|
|
2021-09-03 16:54:11 +00:00
|
|
|
- type: regex
|
|
|
|
name: x-frame-options
|
|
|
|
regex:
|
|
|
|
- "(?i)x-frame-options"
|
2021-07-28 12:40:20 +00:00
|
|
|
negative: true
|
|
|
|
part: header
|
2021-09-03 16:54:11 +00:00
|
|
|
|
|
|
|
- type: regex
|
|
|
|
name: x-content-type-options
|
|
|
|
regex:
|
|
|
|
- "(?i)x-content-type-options"
|
2021-07-28 12:40:20 +00:00
|
|
|
negative: true
|
|
|
|
part: header
|
2021-09-03 16:54:11 +00:00
|
|
|
|
|
|
|
- type: regex
|
|
|
|
name: x-permitted-cross-domain-policies
|
|
|
|
regex:
|
|
|
|
- "(?i)x-permitted-cross-domain-policies"
|
2021-07-28 12:40:20 +00:00
|
|
|
negative: true
|
|
|
|
part: header
|
2021-09-03 16:54:11 +00:00
|
|
|
|
|
|
|
- type: regex
|
|
|
|
name: referrer-policy
|
|
|
|
regex:
|
|
|
|
- "(?i)referrer-policy"
|
2021-07-28 12:40:20 +00:00
|
|
|
negative: true
|
|
|
|
part: header
|
2021-09-03 16:54:11 +00:00
|
|
|
|
|
|
|
- type: regex
|
|
|
|
name: clear-site-data
|
|
|
|
regex:
|
|
|
|
- "(?i)clear-site-data"
|
2021-07-28 12:40:20 +00:00
|
|
|
negative: true
|
|
|
|
part: header
|
2021-09-03 16:54:11 +00:00
|
|
|
|
|
|
|
- type: regex
|
|
|
|
name: cross-origin-embedder-policy
|
|
|
|
regex:
|
|
|
|
- "(?i)cross-origin-embedder-policy"
|
2021-07-28 12:40:20 +00:00
|
|
|
negative: true
|
|
|
|
part: header
|
2021-09-03 16:54:11 +00:00
|
|
|
|
|
|
|
- type: regex
|
|
|
|
name: cross-origin-opener-policy
|
|
|
|
regex:
|
|
|
|
- "(?i)cross-origin-opener-policy"
|
2021-07-28 12:40:20 +00:00
|
|
|
negative: true
|
|
|
|
part: header
|
2021-09-03 16:54:11 +00:00
|
|
|
|
|
|
|
- type: regex
|
|
|
|
name: cross-origin-resource-policy
|
|
|
|
regex:
|
|
|
|
- "(?i)cross-origin-resource-policy"
|
2021-07-28 12:40:20 +00:00
|
|
|
negative: true
|
|
|
|
part: header
|
2021-09-03 16:54:11 +00:00
|
|
|
|
|
|
|
- type: regex
|
|
|
|
name: access-control-allow-origin
|
|
|
|
regex:
|
|
|
|
- "(?i)access-control-allow-origin"
|
2021-07-28 12:40:20 +00:00
|
|
|
negative: true
|
|
|
|
part: header
|
2021-09-03 16:54:11 +00:00
|
|
|
|
|
|
|
- type: regex
|
|
|
|
name: access-control-allow-credentials
|
|
|
|
regex:
|
|
|
|
- "(?i)access-control-allow-credentials"
|
2021-07-28 12:40:20 +00:00
|
|
|
negative: true
|
|
|
|
part: header
|
2021-09-03 16:54:11 +00:00
|
|
|
|
|
|
|
- type: regex
|
|
|
|
name: access-control-expose-headers
|
|
|
|
regex:
|
|
|
|
- "(?i)access-control-expose-headers"
|
2021-07-28 12:40:20 +00:00
|
|
|
negative: true
|
|
|
|
part: header
|
2021-09-03 16:54:11 +00:00
|
|
|
|
|
|
|
- type: regex
|
|
|
|
name: access-control-max-age
|
|
|
|
regex:
|
|
|
|
- "(?i)access-control-max-age"
|
2021-07-28 12:40:20 +00:00
|
|
|
negative: true
|
|
|
|
part: header
|
2021-09-03 16:54:11 +00:00
|
|
|
|
|
|
|
- type: regex
|
|
|
|
name: access-control-allow-methods
|
|
|
|
regex:
|
|
|
|
- "(?i)access-control-allow-methods"
|
2021-07-28 12:40:20 +00:00
|
|
|
negative: true
|
|
|
|
part: header
|
2021-09-03 16:54:11 +00:00
|
|
|
|
|
|
|
- type: regex
|
|
|
|
name: access-control-allow-headers
|
|
|
|
regex:
|
2021-09-05 21:13:45 +00:00
|
|
|
- "(?i)access-control-allow-headers"
|