awesome-repositories.com
Blog
awesome-repositories.com

Descoperă cele mai bune repository-uri open source cu căutare AI.

ExploreazăCăutări recomandateAlternative open-sourceSoftware self-hostedBlogHartă site
ProiectDespreCum realizăm clasamentulPresăServer MCP
LegalConfidențialitateTermeni
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

8 repository-uri

Awesome GitHub RepositoriesHost Header Validations

Verification of the HTTP host header against a list of trusted domains to prevent host poisoning attacks.

Distinct from Domain Trust Validation: Focuses on network-level host header validation rather than AI domain trust or certificate validation.

Explore 8 awesome GitHub repositories matching security & cryptography · Host Header Validations. Refine with filters or upvote what's useful.

Awesome Host Header Validations GitHub Repositories

Găsește cele mai bune repo-uri cu AI.Vom căuta cele mai potrivite repository-uri folosind AI.
  • helmetjs/helmetAvatar helmetjs

    helmetjs/helmet

    10,692Vezi pe GitHub↗

    Helmet is an Express.js middleware library that sets a comprehensive collection of HTTP security headers to protect web applications from common vulnerabilities like cross-site scripting and clickjacking. At its core, it provides a configurable middleware system for injecting security headers into HTTP responses, with a primary focus on Content Security Policy configuration through custom directives and report-only testing modes. The library distinguishes itself through a flexible configuration surface that supports method chaining for composing multiple headers in a single expression, as wel

    Sets custom X-Frame-Options header values, including the obsolete ALLOW-FROM directive, via middleware.

    TypeScripthelmethttp-headersjavascript
    Vezi pe GitHub↗10,692
  • getpaseo/paseoAvatar getpaseo

    getpaseo/paseo

    9,118Vezi pe GitHub↗

    Paseo is an LLM coding agent orchestrator and multi-agent workflow manager designed to coordinate multiple AI agents across isolated git worktrees. It provides a unified control interface for managing these agents and their associated environments to execute complex programming tasks. The system distinguishes itself through a remote agent daemon that enables secure access to local coding agents via encrypted relays. It employs a git worktree environment manager to isolate parallel tasks into dedicated directories and branch-based server URLs, preventing file collisions and network port confli

    Verifies the HTTP host header against a trusted allowlist to prevent DNS rebinding attacks.

    TypeScriptadeagentsclaude-code
    Vezi pe GitHub↗9,118
  • nextcloud/all-in-oneAvatar nextcloud

    nextcloud/all-in-one

    9,082Vezi pe GitHub↗

    all-in-one is a containerized deployment system designed to install and manage a complete suite of productivity and collaboration services. It functions as a cloud suite deployer that orchestrates the installation of a self-hosted content platform, incorporating necessary dependencies via Docker or Kubernetes. The project distinguishes itself by providing a web-based dashboard for orchestrating, updating, and monitoring the lifecycle of service containers. It also serves as a local AI inference server, enabling the execution of generative text models, image diffusion, and speech processing on

    Prevents host poisoning by validating the host header of incoming requests against permitted hostnames.

    PHPbackupdockernextcloud
    Vezi pe GitHub↗9,082
  • yandex/gixyAvatar yandex

    yandex/gixy

    8,570Vezi pe GitHub↗

    Gixy is a static configuration analyzer and security auditor for Nginx. It functions as an infrastructure-as-code security scanner and web server configuration linter designed to identify vulnerabilities and misconfigurations in server definitions before deployment. The tool focuses on detecting high-risk security flaws, including host header spoofing, server-side request forgery, and path traversal. It specifically audits Nginx configurations for risks such as HTTP splitting, multiline header issues, and unauthorized third-party access resulting from incorrect Referer or Origin header patter

    Identifies risks where forged Host headers could lead to phishing or server-side request forgery.

    Python
    Vezi pe GitHub↗8,570
  • nexu-io/html-anythingAvatar nexu-io

    nexu-io/html-anything

    7,275Vezi pe GitHub↗

    Acest proiect este un generator de artefacte HTML LLM și un previewer sandbox conceput pentru prototipare rapidă și creare de conținut. Acesta funcționează ca un bridge de agent AI local care reutilizează sesiunile autentificate de la agenții de codare din linia de comandă pentru a executa sarcini de generare fără a necesita chei API separate. Sistemul convertește layout-urile web în formate specifice platformei prin intermediul unui instrument de export pentru rețelele sociale, utilizând CSS inline și metadate pentru a asigura o publicare consistentă. Utilizează un mediu de randare sandbox pentru a executa codul și scripturile generate de AI în izolare, protejând browserul gazdă de otrăvire. Platforma gestionează transformarea conținutului prin convertirea datelor structurate — inclusiv CSV, JSON și SQL — în artefacte web finisate, cum ar fi pagini de destinație, rapoarte profesionale și pachete de prezentare. Suportă actualizări vizuale în timp real prin streaming-ul codului generat de AI în browser prin evenimente trimise de server. Capabilitățile de export includ conversia nodurilor web randate în imagini PNG de înaltă rezoluție și fișiere HTML independente.

    Validates HTTP host headers against a permitted list of domains to prevent DNS rebinding and unauthorized access.

    HTML
    Vezi pe GitHub↗7,275
  • daffainfo/allaboutbugbountyAvatar daffainfo

    daffainfo/AllAboutBugBounty

    6,644Vezi pe GitHub↗

    AllAboutBugBounty is a curated collection of bug bounty techniques and payloads for web application security testing. It serves as a reference resource covering common web vulnerabilities and exploitation methods for security researchers, providing a structured approach to identifying and exploiting web application security flaws in bug bounty programs. The repository covers a wide range of attack categories including authentication bypass, cross-site scripting injection, server-side request forgery, web cache poisoning, and business logic abuse. It includes techniques for bypassing access co

    Documents a specific technique for bypassing host header validation using override headers.

    bugbugbountybugbountytips
    Vezi pe GitHub↗6,644
  • requestly/requestlyAvatar requestly

    requestly/requestly

    6,341Vezi pe GitHub↗

    Overrides X-Frame-Options headers to allow embedding pages in iframes during testing.

    TypeScriptapiapi-clientapi-mock
    Vezi pe GitHub↗6,341
  • jhuckaby/cronicleAvatar jhuckaby

    jhuckaby/Cronicle

    5,745Vezi pe GitHub↗

    Cronicle is a distributed job scheduler that replaces traditional cron with a browser-based management interface. It runs scheduled tasks across a cluster of servers with automatic failover, using a custom cron parser that intersects day-of-month and day-of-week constraints when both are specified. The system executes jobs through a plugin framework that runs command-line scripts in any language, communicating via JSON over standard input and output. The scheduler provides a web-based real-time dashboard for monitoring running jobs with live logs, resource usage charts, and progress updates.

    Rejects incoming HTTP requests unless the Host header matches a configured domain name.

    JavaScript
    Vezi pe GitHub↗5,745
  1. Home
  2. Security & Cryptography
  3. Host Header Validations

Explorează sub-etichetele

  • Absolute URL Override TechniquesTechniques that supply an absolute URL in the request line to override the Host header and bypass validation. **Distinct from Host Header Validations:** Distinct from Host Header Validations: focuses on bypassing validation via absolute URL injection rather than general host header verification.
  • Header Duplication Bypass TechniquesTechniques that send multiple Host headers in a single request to confuse the server and bypass validation checks. **Distinct from Host Header Validations:** Distinct from Host Header Validations: focuses on bypassing validation via header duplication rather than general host header verification.
  • Header Wrapping Bypass TechniquesTechniques that insert line-wrapped Host headers to evade parsing logic and inject a malicious host value. **Distinct from Host Header Validations:** Distinct from Host Header Validations: focuses on bypassing validation via header wrapping rather than general host header verification.
  • Host Header InjectionsTechniques for modifying the Host or X-Forwarded-Host header to manipulate server-side behavior, such as redirecting reset links to attacker-controlled domains. **Distinct from Host Header Validations:** Distinct from Host Header Validations: focuses on exploiting host header injection vulnerabilities rather than validating them.
  • Override Header Bypass Techniques1 sub-tagTechniques that use alternative headers like X-Forwarded-Host to override the server's host value and bypass validation. **Distinct from Host Header Validations:** Distinct from Host Header Validations: focuses on bypassing validation via override headers rather than general host header verification.