Security.txt file is missing

Description

Kayran has detected that a Security.txt file is missing!
Every site must contain this file, we use it to report and define a standard to which will be helpful for security researchers to disclose security vulnerabilities securely.

The file is designed to make it easier for ethical hackers, researchers, and other finders to reach your organization when they need to report a security vulnerability.

Although there’s no actual risk in not having a Security.txt file, we highly recommend it.

Recommendation

We recommend you to implement this file according to the standard, doing so, will only benefit your site.
Here’s an example made by Google :
https://www.google.com/.well-known/security.txt

References

https://securitytxt.org/

< Return to all Vulnerabilities

Red Team

You’ve probably heard that there are teams in the Cyber field called Red Team and Blue Team. Let’s talk about the red one, shall we?

Read More »

Active Directory Hacking

What does Active Directory mean? The Active Directory infrastructure is a critical infrastructure in most organizations, and it forms the backbone of the organization’s computing

Read More »