View Issue Details

IDProjectCategoryView StatusLast Update
0007213Kali Linux[All Projects] Queued Tool Additionpublic2022-11-15 12:49
Reporterbluesman Assigned To 
PrioritynormalSeverityminorReproducibilityhave not tried
Status acknowledgedResolutionopen 
Product Version 
Target VersionFixed in Version 
Summary0007213: humble - A humble, and fast, security-oriented HTTP headers analyzer
DescriptionTool author here! :).

@kali-team, I have no prior experience in project packaging, but if you think that this little tool can be useful for the community, it would be an honor if it was packaged and added to the Kali repositories.

Thanks!


Name: humble
Homepage/repo: https://github.com/rfc-st/humble
Description: A humble, and fast, security-oriented HTTP headers analyzer
Dependencies: colorama, fpdf, requests and tldextract

Activities

bluesman

2021-06-05 23:50

reporter   ~0014681

License: MIT.

g0tmi1k

2021-06-26 07:22

administrator   ~0014860

@kali-team, please could this be packaged up.

g0tmi1k

2021-06-26 07:24

administrator   ~0014861

@author, nice tool.
Will see about it =)

Suggestion, able to explain/on into more depth with `content-security-policy`

bluesman

2021-06-26 22:18

reporter   ~0014868

Indeed!, i'll try my best to improve it. Thanks for your suggestion! :).

bluesman

2021-12-08 19:27

reporter   ~0015493

Hi!,

I would like to mention the main features of this tool, and the improvements since I suggested to include it in Kali, in June of this year:

* Releases available!, with detailed changelogs: https://github.com/rfc-st/humble/releases.

* A total of 13 checks for missing HTTP response headers.

* A total of 73 checks for HTTP response headers related to fingerprint.

* A total of 22 checks for HTTP response headers with values considered insecure.

*Export of analysis to html, pdf and txt.

* PEP8 compliant.

* Tested on Linux and Windows.

Thanks!.

bluesman

2022-05-27 23:13

reporter   ~0016220

Update of the features of this humble program:

* 14 checks of missing HTTP response headers.
* 106 checks of fingerprinting through HTTP response headers.
* 25 checks of deprecated HTTP response headers or with values considered insecure.
* Two types of analysis: brief and complete, along with HTTP response headers.
* Export of analysis to html, pdf and txt.
* PEP8 compliant code.
* Tested, one by one, on hundreds of URLs.
* Fully working on Windows (10 20H2 - 19042.985) and Linux (Kali 2021.1).
* Permissive license (MIT).
* Regularly updated.

Thanks!.

bluesman

2022-11-10 18:33

reporter   ~0017064

Updates of the features of this humble program:

* 14 checks of missing HTTP response headers.
* 358 checks of fingerprinting through HTTP response headers.
* 42 checks of deprecated HTTP response headers/protocols or with values considered insecure.
* Browser compatibility check for enabled security headers.
* Two types of analysis: brief and detailed, along with HTTP response headers.
* Export of analysis to HTML5, PDF 1.4 and TXT.
* The analysis includes dozens of references, official documentation and technical articles.
* i18n: analysis results in English or Spanish.
* PEP8 compliant code.
* Tested, one by one, on thousands of URLs.
* Fully working on Windows (10 20H2 - 19042.985) and Linux (Kali 2021.1).
* Permissive license (MIT).
* Regularly updated.
* Technical resource in the OWASP Secure Headers Project.

Thanks!.

Issue History

Date Modified Username Field Change
2021-06-05 23:32 bluesman New Issue
2021-06-05 23:50 bluesman Note Added: 0014681
2021-06-26 07:22 g0tmi1k Note Added: 0014860
2021-06-26 07:22 g0tmi1k Status new => acknowledged
2021-06-26 07:22 g0tmi1k Category New Tool Requests => Queued Tool Addition
2021-06-26 07:22 g0tmi1k Summary humble: A humble, and fast, security-oriented HTTP headers analyzer => humble - A humble, and fast, security-oriented HTTP headers analyzer
2021-06-26 07:24 g0tmi1k Note Added: 0014861
2021-06-26 22:18 bluesman Note Added: 0014868
2021-12-08 19:27 bluesman Note Added: 0015493
2022-05-27 23:13 bluesman Note Added: 0016220
2022-11-10 18:33 bluesman Note Added: 0017064