Details
Scan Rule ID 10035
Alert Type Passive
Status release

Alerts

  • 10035-1 Strict-Transport-Security Header Not Set
  • 10035-2 Strict-Transport-Security Disabled
  • 10035-3 Strict-Transport-Security Multiple Header Entries (Non-compliant with Spec)
  • 10035-4 Strict-Transport-Security Header on Plain HTTP Response
  • 10035-5 Strict-Transport-Security Missing Max-Age (Non-compliant with Spec)
  • 10035-6 Strict-Transport-Security Defined via META (Non-compliant with Spec)
  • 10035-7 Strict-Transport-Security Max-Age Malformed (Non-compliant with Spec)
  • 10035-8 Strict-Transport-Security Malformed Content (Non-compliant with Spec)

Code

org/zaproxy/zap/extension/pscanrules/StrictTransportSecurityScanRule.java