Contact us: info@akimbocore.com

HTTP Security Headers: Strict-Transport-Security

Published: 06 August 2021    Last Updated: 05 July 2023

HTTP Strict Transport Security (HSTS) enforces the use of HTTPS in the web browser, ensuring that no information is sent to the domain (and optionally subdomains too), even if the user attempts to navigate to a HTTP page. This additionally mitigates the risk of cookies without the "secure" flag set, by enforcing all traffic is HTTPS only.


Continue Reading

Categories

Fixing

Guidance on remediating vulnerabilities.

Infrastructure

Articles concentrating on network and operating system level attacks.

Web Application

Articles covering attacks against web applications and their associated APIS.

Breaches

Articles concentrating on past data breaches, looking for lessons learned.

Wireless

Articles covering breaking into wireless networks and how to keep them safe.

Building

Articles about building secure systems.

Cheat Sheets

Cheat sheets containing common commands or payloads for common vulnerabilities.

Copyright © 2021 Akimbo Core Ltd

Company Number: 13143302

Build: 6-11