Giter Club home page Giter Club logo

psheaders's Introduction

PSHeaders

A Poweshell script for auditing HTTP headers from a server for best security practices.

Setup

The script can simply be downloaded on Windows and run from a Powershell terminal.

If on OSX or Linux first install Powershell full instructions can be found here however it is included in most good pacakge managers.

Then use pwsh PSHeaders.ps1 -Help to see the help menu below along with a nice bit of ASCII art.

Usage

-Help        - Display this message.                
-Url         - Specifies the URL to use                         
-File        - Specifies a file contianing URL's to be used.               
-Proxy       - Proxy server to use. E.g. http://127.0.0.1:8000              
-OutputFile  - The location where output will be written to disk.          
-Csv         - The location where output will be written to disk            
               in CSV format.       
-Cert        - Specifices a PFX file to use as the client certificate    
-Verb        - Specifies the HTTP Verb to use e.g. GET, PUT, POST etc.    
               Currently Powershell versions prior to 6.0 can only use    
               Standard verbs.
-Cookie      - This parameter can be used to pass cookies directly out
               of HTTP requests for automatic parsing however cannot be
               used if the cookie contains a "=" character in the value.
               If you need to pass an "=" use the -CookieName and 
               -CookieValue parameters.                                             
-CookieName  - Used when supplying a cookie with a web reqest.                      
               Name of the cookie to be supplied. Must be used in               
               conjunction with -CookieValue                               
-CookieValue - Used when supplying a cookie with a web reqest.                  
               Value of the cookie to be supplied. Must be used                 
               in conjunction with -CookieName

Examples

Perform a request to Google:
./PSHeaders -u google.com

Perfomr a request to all URLs/IP addresses in a file:
./PSHeaders -f file.txt

Perform a request to Google and output to a CSV file:
./PSHeaders -u google.com -Csv csv.xls

Perform a GET request to Google as oppose to a HEAD request:
./PSHeaders -u google.com -Verb GET

Perform a request to Google using the cookies 1=2;3=4;5=6; and send the request via a proxy at 127.0.0.1:8080:
./PSHeaders -u http://google.com -Cookie "1=2;3=4;" -CookieName 5 -CookieValue 6 -Proxy http://127.0.0.1:8080

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.