HTTP Server Cross-Origin Resource Sharing (CORS) Scanner
You can test HTTP server by using this tool.
Short Info
Level
Medium
Type
Single Scan
Can be used by
Asset Owner
Estimated Time
15 sec
Scan only one
Domain, Ipv4
Parent Category
HTTP Server Cross-Origin Resource Sharing (CORS) Scanner Detail
Tests an http server for Cross-Origin Resource Sharing (CORS), a way for domains to explicitly opt in to having certain methods invoked by another domain.
The script works by setting the Access-Control-Request-Method header field for certain enumerated methods in OPTIONS requests, and checking the responses.
Try it yourself,
control security posture
control security posture