Http Trace Enabled
Description
This detector identifies web servers that have the HTTP TRACE method enabled, which can expose sensitive information and enable cross-site tracing attacks. The TRACE method allows attackers to bypass httpOnly cookie protections and potentially access authentication credentials or session tokens.
Detection Strategy
• Sends an HTTP TRACE request to the target URL
• Checks if the server responds with HTTP status code 200 (OK)
• Verifies that the response body contains the text 'TRACE', indicating the method is enabled and echoing back the request
• Reports a vulnerability when all three conditions are met: successful TRACE request, 200 status code, and 'TRACE' text in response body
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.