The Web Application Header risk vector assesses a variety of HTTP headers to determine if security best practices are being followed.
- Refer to the specific issues within the finding details. You can use the commands below to view all the current publicly available web application headers.
- The most common issues stem from required configurations, most often within Content-Security-Policy implementation.
The cURL and Wget commands have similar outputs, but you may have more success using one over the other. If you don’t see a response for one, try swapping them out. You can then provide the insights to the relevant administrators in your company for review.
Commands requiring specific asset data from your finding to be inserted (variables) are indicated by the bold text.
Request over HTTP/HTTPS protocols to get and verify header configurations.
curl -IL https://domain.com -k
curl -IL domain.com port
Get and verify header configurations, including how HTTP/HTTPS protocols are configured.
You may get varying results by requesting a port
https/http response. Try both to verify that you receive any response from the website.
wget -S --no-check-certificate https://domain.com
wget -S --no-check-certificate domain.com port