Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/farinap5/headerparsing

Web Header Dump For Parsing
https://github.com/farinap5/headerparsing

bugbounty header header-dump pentesting webpwn

Last synced: about 1 year ago
JSON representation

Web Header Dump For Parsing

Awesome Lists containing this project

README 

          
Header Dump for Parsing


To help analyze web headers.


 

   




***

```

shell> python3 hdfp.py u=http://example.com



        Header Dump for Parsing

        -----------------------

            

Target: http://example.com

[!]The Server is Behind a CloudFlare Server.

[OK] No WAF Detected.



Code: 503

Uncommun headers found with contents:

server : cloudflare

connection : close

cache-control : private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0

date : Sat, 05 Dec 2020 17:32:55 GMT

expires : Thu, 01 Jan 1970 00:00:01 GMT

set-cookie : __cfduid=d6741bd2d0ec6e42cc93e382d83f87cb41607189575; expires=Mon, 04-Jan-21 17:32:55 GMT; path=/; domain=.example.com; HttpOnly; SameSite=Lax

vary : Accept-Encoding

transfer-encoding : chunked

content-type : text/html; charset=UTF-8

x-frame-options : SAMEORIGIN



Missing Headers:

[Info] Missing 'X-XSS-Protection' - XSS Vulnerable.

[Info] Missing 'Content-Security-Policy' - Can be accessed over HTTP.

[Info] Missing 'Strict-Transport-Security' - Connection Might be Sniffed.

[Info] Missing 'X-Content-Type-Options' - MIME sniffing.

[Info] Missing 'Public-Key-Pins'.



Cookies:

Name: __cfduid

Value: d6741bd2d0ec6e42cc93e382d83f87cb41607189575

Port: None

Path: /

Secure: False

Expires: 1609781575

Domain: .example.com

Version: 0

Discard: False

RFC: False



```