| ... |
|
S001_backend_auth_communications.dart
|
5.09 KB |
|
S002_os_command_injection.dart
|
4.72 KB |
|
S003_open_redirect_protection.dart
|
6.27 KB |
|
S004_sensitive_data_logging.dart
|
13.07 KB |
|
S005_trusted_service_authorization.dart
|
5.26 KB |
|
S006_no_default_credentials.dart
|
5.85 KB |
|
S007_output_encoding.dart
|
6.07 KB |
|
S008_svg_content_sanitization.dart
|
6.24 KB |
|
S009_no_insecure_encryption.dart
|
5.69 KB |
|
S010_use_csprng.dart
|
6.21 KB |
|
S011_ech_tls_config.dart
|
4.95 KB |
|
S012_hardcoded_secrets.dart
|
8.81 KB |
|
S013_tls_enforcement.dart
|
4.6 KB |
|
S014_tls_version_enforcement.dart
|
3.39 KB |
|
S015_insecure_tls_certificate.dart
|
9.63 KB |
|
S016_no_sensitive_querystring.dart
|
8.43 KB |
|
S017_use_parameterized_queries.dart
|
6.11 KB |
|
S018_no_sensitive_browser_storage.dart
|
4.9 KB |
|
S019_smtp_injection_protection.dart
|
5.75 KB |
|
S020_no_eval_dynamic_code.dart
|
4.79 KB |
|
S021_referrer_policy.dart
|
4.16 KB |
|
S022_escape_output_context.dart
|
3.43 KB |
|
S023_no_json_injection.dart
|
18.35 KB |
|
S024_xpath_xxe_protection.dart
|
10.5 KB |
|
S025_server_side_validation.dart
|
4.57 KB |
|
S026_tls_all_connections.dart
|
6.25 KB |
|
S027_mtls_certificate_validation.dart
|
6.86 KB |
|
S028_file_upload_size_limits.dart
|
6.53 KB |
|
S029_csrf_protection.dart
|
5.15 KB |
|
S030_directory_browsing_protection.dart
|
4.8 KB |
|
S031_secure_session_cookies.dart
|
3.49 KB |
|
S032_httponly_session_cookies.dart
|
3.35 KB |
|
S033_samesite_session_cookies.dart
|
3.67 KB |
|
S034_host_prefix_session_cookies.dart
|
5.35 KB |
|
S035_separate_app_hostnames.dart
|
3.46 KB |
|
S036_lfi_rfi_protection.dart
|
6.16 KB |
|
S037_cache_headers.dart
|
3.54 KB |
|
S038_no_version_headers.dart
|
3.34 KB |
|
S039_tls_certificate_validation.dart
|
4.22 KB |
|
S040_session_fixation_protection.dart
|
4.62 KB |
|
S041_session_token_invalidation.dart
|
6.66 KB |
|
S042_require_re_authentication_for_long_lived.dart
|
6.15 KB |
|
S043_password_changes_invalidate_all_sessions.dart
|
2.77 KB |
|
S044_re_authentication_required.dart
|
3.86 KB |
|
S045_brute_force_protection.dart
|
9.24 KB |
|
S046_jwt_algorithm_allowlist.dart
|
3.54 KB |
|
S047_oauth_pkce_protection.dart
|
3.94 KB |
|
S048_oauth_redirect_uri_validation.dart
|
4.31 KB |
|
S049_short_validity_tokens.dart
|
5.09 KB |
|
S050_reference_tokens_entropy.dart
|
7.51 KB |
|
S051_password_length_policy.dart
|
5.89 KB |
|
S052_weak_otp_entropy.dart
|
3.33 KB |
|
S053_generic_error_messages.dart
|
5.08 KB |
|
S054_no_default_accounts.dart
|
4.4 KB |
|
S055_content_type_validation.dart
|
12.17 KB |
|
S056_log_injection_protection.dart
|
3.83 KB |
|
S057_utc_logging.dart
|
3.55 KB |
|
S058_no_ssrf.dart
|
5.68 KB |
|
S059_disable_debug_mode.dart
|
5.43 KB |
|
S060_password_minimum_length.dart
|
5.49 KB |