Book a Demo!
CoCalc Logo Icon
StoreFeaturesDocsShareSupportNewsAboutPoliciesSign UpSign In
1N3
GitHub Repository: 1N3/Sn1per
 Path: blob/master/templates/passive/web/CSP_Not_Enforced.sh
2970 views
1
if [ -f $LOOT_DIR/web/headers-http-$TARGET.txt ]; then

2
	if [ "$SSL" = "true" ]; then

3
		AUTHOR='@xer0dayz'

4
		VULN_NAME='CSP Not Enforced'

5
		FILENAME="$LOOT_DIR/web/headers-https-$TARGET.txt"

6
		MATCH="content-security-policy"

7
		SEVERITY='P5 - INFO'

8
		GREP_OPTIONS='-i'

9
		SEARCH='negative'

10
		SECONDARY_COMMANDS=''

11
		URI=""

12
	else

13
		AUTHOR='@xer0dayz'

14
		VULN_NAME='CSP Not Enforced'

15
		FILENAME="$LOOT_DIR/web/headers-http-$TARGET.txt"

16
		MATCH="content-security-policy"

17
		SEVERITY='P5 - INFO'

18
		GREP_OPTIONS='-i'

19
		SEARCH='negative'

20
		SECONDARY_COMMANDS=''

21
		URI=""

22
	fi

23
fi

24