Skip to content
  • There are no suggestions because the search field is empty.

How do I set up header injections for a web assessment?

Header injections allow the scanner to send custom HTTP headers with every request during a web application assessment.

Steps to configure header injections

  1. Log in to your Security Center.

  2. In the main navigation bar, hover over Assets.

  3. From the dropdown menu, select Web applications & APIs.

  4. For an existing web application, click the Edit icon next to it. For a new web application, click + Add Web Application and complete the setup.

  5. Click Scan settingsHeaders

  6. Add one or more headers using the format:

    • Accept: */*

    • Accept: application/json

    • Content-Type: application/json

    • Content-Type: text/plain

  7. To add a custom header, type it in the field and press Enter. There is no limit to the number of headers you can add.

  8. Click OK to save the settings.

The scanner will now include the specified headers in every request during the assessment.