67
edits
WebAppSec/MozSecureWorld: Difference between revisions
→Cookie Protection
| Line 149: | Line 149: | ||
* Secure Flag | * Secure Flag | ||
* HTTPOnly Flag | * HTTPOnly Flag | ||
==== How to check ==== | |||
# Get Burp | |||
# Go to your site | |||
# should see that ""Set-Cookie: HTTPOnly" in the HTTP Header Response | |||
== Roadmap == | == Roadmap == | ||