HTTP Security Headers | Part 01
This week we are kicking-off the new series to discuss HTTP security headers. Headers provide defense-in-depth for various vulnerabilities such as XSS, injections, MiTM etc. In this episode, we will discuss importance and mitigation provided by HSTS and CSP header. These header provided additional protection against XSS, MiTM, cookie hijacking etc.
Facebook: https://www.facebook.com/InfoSecForStarters/
References:
https://owasp.org/www-project-secure-headers/
https://www.w3.org/TR/CSP/
Information regarding the HSTS preload list in Chrome : https://www.chromium.org/hsts
Consultation of the Firefox HSTS preload list : nsSTSPreloadList.inc
#owasptop10 #webapppentest #appsec #applicationsecurity #apitesting #apipentest #cybersecurityonlinetraining #freesecuritytraining #penetrationtest #ethicalhacking #burpsuite
Видео HTTP Security Headers | Part 01 канала CyberSecurityTV
Facebook: https://www.facebook.com/InfoSecForStarters/
References:
https://owasp.org/www-project-secure-headers/
https://www.w3.org/TR/CSP/
Information regarding the HSTS preload list in Chrome : https://www.chromium.org/hsts
Consultation of the Firefox HSTS preload list : nsSTSPreloadList.inc
#owasptop10 #webapppentest #appsec #applicationsecurity #apitesting #apipentest #cybersecurityonlinetraining #freesecuritytraining #penetrationtest #ethicalhacking #burpsuite
Видео HTTP Security Headers | Part 01 канала CyberSecurityTV
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
HTTP Security Headers | Part 02http vs https | How SSL (TLS) encryption works in networking ? (2021)Content-Security-Policy: An IntroductionHeaders for Hackers: Wrangling HTTP Like a ProInsecure Deserialization For BeginnersHTTP Security Headers | Part 03Networking basics (2020) | What is a switch, router, gateway, subnet, gateway, firewall & DMZAPI Penetration Test | Insecure Direct Object Reference | 04How To Protect Your Linux Server From Hackers!Exploiting Web Cache Poisoning (Demo)HTTP Crash Course & ExplorationHow to use headers in REST APIs? Different types of headers, how and where to use?Hackers Hate It! Secure Your Web App with These 6 Weird HTTP HeadersHTTP | HTTP Connection | HTTP Header | Working of HTTP | HTTP Simple Request | HTTP Full RequestHTTP Headers and CookiesBSidesSF 2018 - No More XSS: Deploying CSP with nonces and strict-dynamic (Devin Lundberg)Web App Pentesting - HTTP Headers & MethodsHTTP Headers - The State of the WebIntroduction to API Penetration Test | E02Server Side JavaScript Injection