8000 cors · GitHub Topics · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content
#

Cross-origin resource sharing (CORS)

Star

Cross-origin resource sharing (CORS) is a mechanism that allows restricted resources on a web page to be accessed from another domain outside the domain from which the first resource was served. CORS also relies on a mechanism by which browsers make a "preflight" request to the server hosting the cross-origin resource, in order to check that the server will permit the actual request. In that preflight, the browser sends headers that indicate the HTTP method and headers that will be used in the actual request. For security reasons, browsers restrict cross-origin HTTP requests initiated from scripts. For example, fetch() and XMLHttpRequest follow the same-origin policy. This means that a web application using those APIs can only request resources from the same origin the application was loaded from unless the response from other origins includes the right CORS headers.

Resource types

  • Invocations of fetch() or XMLHttpRequest
  • Web Fonts (for cross-domain font usage in @font-face within CSS), so that servers can deploy TrueType fonts that can only be loaded cross-origin and used by websites that are permitted to do so
  • WebGL textures
  • Images/video frames drawn to a canvas using drawImage()
  • CSS shapes from images
  • scripts
  • iframes

Here are 46 public repositories matching this topic...

Language: Shell
Filter by language
All 5,487 JavaScript 3,755 TypeScript 713 Python 164 HTML 142 Go 125 Java 111 PHP 88 C# 83 Shell 46 CSS 43
Sort: Most stars
Sort options
Most stars Fewest stars Most forks Fewest forks Recently updated Least recently updated

ImKKingshuk / MisCORS

Sponsor
Star 1

MisCORS - Unleash CORS Misconfigurations Like a Digital Phantom! 🌐✨ Harness the power of MisCORS to silently unveil vulnerabilities in Cross-Origin Resource Sharing. Stealthily analyze web defenses, expose misconfigurations, and empower your security journey. 🕵️‍♂️🔓 Dive into the shadows of web security with MisCORS. #WebSecurity #CORSExposure

cors penetration-testing cors-proxy ethical-hacking cross-origin-resource-sharing web-application-security vulnerability-scanner hacking-tools cors-misconfigurations cors-scanner cors-vulnerability cors-misconfiguration-scanner penetration-testing-tool web-security-tool cors-hack
  • Updated Jun 15, 2024
  • Shell

Created by WHATWG, Matt Oshry, Brad Porter, Michael Bodell, Tellme Networks

Released May 2006

Followers
13 followers
Website
fetch.spec.whatwg.org/#http-cors-protocol
Wikipedia
Wikipedia

Related Topics

ajax content-security-policy jsonp xhr
0