What’s in a version number?

You're assessing a website. You get an HTTP response that looks like this: HTTP/2.0 200 OK content-type: text/html; charset=utf-8 expires: Sat, 01 Jan 2000 00:00:00 GMT x-frame-options: DENY x-powered-by: PHP/5.1.5 pragma: no-cache strict-transport-security: max-age=15552000; preload cache-control: private, no-cache, no-store, must-revalidate date: Tue, 18 Jun 2019 04:28:37 GMT X-Firefox-Spdy: h2 What do you report? If you've … Continue reading What’s in a version number?

Burp SSL_ERROR_RX_RECORD_TOO_LONG on Kali Linux

Browser displays this strange message SSL_ERROR_RX_RECORD_TOO_LONG on Kali is caused by using Java 11 (installed and set to default in Kali). Even though Burp does send requests and receive the responses, for some odd reason, the browser receives this error from Burp. And to make things more confusing, there's no message in the Alerts tab … Continue reading Burp SSL_ERROR_RX_RECORD_TOO_LONG on Kali Linux