CypherCon 2022

What Your Headers Say About You

Bob Lerner

Abstract:

HTTP Headers are an often overlooked, though very powerful way to improve the security of your application. We’ll take a look at what headers can be used to find vulnerabilities in your site, look at some examples I’ve seen while scanning thousands of sites, and demo a live scan of a site.

Bob Lerner

418 I’m a Teapot.

Software engineer turned security consultant, I’ve created several -free- online tools to improve your site’s security, I run a blog nobody reads, and find exploits in every day life.