Add missing-x-content-type-options

2021-07-02 11:10:29 -03:00 · 2021-07-02 11:10:29 -03:00 · e0d5207fe6
parent 36a4bbb3bf
commit e0d5207fe6
1 changed files with 18 additions and 0 deletions
--- a/miscellaneous/missing-x-content-type-options.yaml
+++ b/miscellaneous/missing-x-content-type-options.yaml
@ -0,0 +1,18 @@
+id: missing-x-content-type-options
+
+info:
+  name: X-Content-Type-Options unidentified
+  author: G4L1T0 and @convisoappsec
+  severity: info
+  description: Check for X-Content-Type-Options header
+  tags: misc
+
+requests:
+  - method: GET
+    path:
+      - '{{BaseURL}}'
+    redirects: true
+    matchers:
+      - type: dsl
+        dsl:
+          - '!contains(tolower(all_headers), ''x-content-type-options'')'