Entêtes HTTP de sécurité
Cross Site Scripting (XSS)
Cross-Site Request Forgeries (CSRF)
Cross site tracing (XST)
Content Security Policy (CSP)
https://developer.mozilla.org/fr/docs/Web/HTTP/CSP
https://cheatsheetseries.owasp.org/cheatsheets/Content_Security_Policy_Cheat_Sheet.html
HTTP Parameter Pollution (HPP)
HTTP Strict Transport Security (HSTS)
HSTS est un en-tête HTTP, Strict-Transport-Security
HTTP Strict Transport Security
sur owasp
Referrer-Policy
Referrer-Policy: same-origin