You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository was archived by the owner on Apr 23, 2025. It is now read-only.
Copy file name to clipboardExpand all lines: docs/guides/web_scraping/content.md
+8Lines changed: 8 additions & 0 deletions
Original file line number
Diff line number
Diff line change
@@ -7,6 +7,10 @@ sidebar_label: Content Trackers
7
7
8
8
The web page content tracker is a utility that empowers developers to detect and monitor the content of any web page. Alongside [web page resources trackers](./resources.md), it falls under the category of [synthetic monitoring](https://en.wikipedia.org/wiki/Synthetic_monitoring) tools. However, it extends its capabilities to cover a broader set of use cases. These range from ensuring that the deployed application loads only the intended content throughout its lifecycle to tracking changes in arbitrary web content when the application lacks native tracking capabilities. In the event of a change, whether it's caused by a broken deployment or a legitimate content modification, the tracker promptly notifies the user.
9
9
10
+
:::caution NOTE
11
+
Currently, Secutils.dev doesn't support tracking content for web pages protected by application firewalls (WAF) or any form of CAPTCHA. If you require tracking content for such pages, please comment on [#secutils/34](https://github.com/secutils-dev/secutils/issues/34) to discuss your use case.
12
+
:::
13
+
10
14
On this page, you can find guides on creating and using web page content trackers.
11
15
12
16
:::note
@@ -213,6 +217,10 @@ console.log(foo(5));
213
217
### Track API response
214
218
You can use content tracker to track API responses as well (until dedicated [`API tracker` utility](https://github.com/secutils-dev/secutils/issues/32) is released). For instance, you can track the response of the [JSONPlaceholder](https://jsonplaceholder.typicode.com/) API:
215
219
220
+
:::caution NOTE
221
+
Ensure that the web page from which you're making a fetch request allows cross-origin requests. Otherwise, you'll get an error.
Copy file name to clipboardExpand all lines: docs/guides/web_scraping/resources.md
+12-8Lines changed: 12 additions & 8 deletions
Original file line number
Diff line number
Diff line change
@@ -9,6 +9,10 @@ The web page resources tracker is a utility that gives developers the ability to
9
9
10
10
Additionally, security researchers focused on discovering potential security vulnerabilities in third-party web applications can use web page resources trackers. By being notified when the application's resources change, researchers can identify if the application has been upgraded, providing an opportunity to re-examine the application and potentially discover new vulnerabilities.
11
11
12
+
:::caution NOTE
13
+
Currently, Secutils.dev doesn't support tracking resources for web pages protected by application firewalls (WAF) or any form of CAPTCHA. If you require tracking resources for such pages, please comment on [#secutils/34](https://github.com/secutils-dev/secutils/issues/34) to discuss your use case.
14
+
:::
15
+
12
16
On this page, you can find guides on creating and using web page resources trackers.
Copy file name to clipboardExpand all lines: docs/guides/web_security/csp.md
+2-2Lines changed: 2 additions & 2 deletions
Original file line number
Diff line number
Diff line change
@@ -1,6 +1,6 @@
1
1
---
2
2
sidebar_position: 1
3
-
sidebar_label: Content Security Policy
3
+
sidebar_label: Content Security Policies
4
4
---
5
5
6
6
# What is a Content Security Policy?
@@ -260,7 +260,7 @@ CSP Test
260
260
9. Once the policy is set up, it will appear in the policies grid
261
261
10. Click the policy's **Copy policy** button and use **Policy source** dropdown to switch to **HTML meta tag** policy representation
262
262
11. Copy `<meta>` HTML tag with the policy and navigate to [Webhooks → Responders](https://secutils.dev/ws/webhooks__responders) again
263
-
12. Edit **Body** property of the previously created **csp-test** responder to include `<meta>` HTML tag with the policy inside `<head>` HTML tag
263
+
12. Edit **Body** property of the previously created **CSP Test** responder to include `<meta>` HTML tag with the policy inside `<head>` HTML tag
264
264
13. Click the **Save** button and navigate to the responder's URL again
265
265
14. This time, when you click the **Eval** button, nothing happens and an error message is logged in the browser console meaning that you have successfully forbidden **eval()** with the Content Security Policy
0 commit comments