Jump to content
YOUR-AD-HERE
HOSTING
TOOLS
SERVICE

Locked H2T


0x1

Recommended Posts

h2t - HTTP Hardening Tool

Description

h2t is a simple tool to help sysadmins to hardening their websites.

Until now h2t checks the website headers and recommends how to make it better.

Dependences

  • Python 3
  • colorama
  • requests

Install

This is the hidden content, please

Usage

h2t has subcommands: list and scan.

This is the hidden content, please

List Subcommand

The list subcommand lists all headers cataloged in h2t and can show informations about it as a description, links for more information and for how to's.

This is the hidden content, please

Scan Subcommand

The scan subcommand perform a scan in a website looking for their headers.

This is the hidden content, please

Output

For now the output is only in normal mode. Understant it as follows:

  • [+] Red Headers are bad headers that open a breach on your website or maybe show a lots of information. We recommend fix it.
  • [+] Yellow Headers are good headers that is not applied on your website. We recommend apply them.
  • [-] Green Headers are good headers that is already used in your website. It's shown when use -s flag.

Example:

This is the hidden content, please

  • Cookie HTTP Only would be good to be applied
  • Cookie over SSL/TLS would be good to be applied
  • Server header would be good to be removed
  • Referrer-Policy would be good to be applied
  • X-Frame-Options is already in use, nothing to do here
  • X-XSS-Protection is already in use, nothing to do here

Screenshots

List h2t catalog

This is the hidden content, please

Scan from file

This is the hidden content, please

Scan url

This is the hidden content, please

Scan verbose

This is the hidden content, please

Headers information

This is the hidden content, please

Source & Download

This is the hidden content, please

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.