Scribd
Upload
21 views6 pages

PentestTools WebsiteScanner Report

Uploaded by

kawaiibro9
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
21 views6 pages

PentestTools WebsiteScanner Report

Uploaded by

kawaiibro9
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 6

Website Vulnerability Scanner Report (Light)

Unlock the full capabilities of this scanner

See what the DEEP scanner can do

Perform in-depth website scanning and discover high risk vulnerabilities.

Testing areas Light scan Deep scan

Website fingerprinting  
Version-based vulnerability detection  

Common configuration issues  


SQL injection  
Cross-Site Scripting  

Local/Remote File Inclusion  


Remote command execution  

Discovery of sensitive files  

 https://www.binance.com/
Target added due to a redirect from https://www.binance.com

The Light Website Scanner didn't check for critical issues like SQLi, XSS, Command Injection, XXE, etc. Upgrade to run Deep scans with
40+ tests and detect more vulnerabilities.

Summary

Overall risk level: Risk ratings: Scan information:


Low Critical: 0 Start time: Aug 17, 2025 / 09:32:15 UTC+03
High: 0 Finish time: Aug 17, 2025 / 09:32:42 UTC+03
Medium: 0 Scan duration: 27 sec

Low: 5 Tests performed: 39/39

Info: 34 Scan status: Finished

Findings

 Missing security header: Strict-Transport-Security CONFIRMED


port 443/tcp

URL Evidence

Response headers do not include the HTTP Strict-Transport-Security header


https://www.binance.com/
Request / Response

 Details

Risk description:
The risk is that lack of this header permits an attacker to force a victim user to initiate a clear-text HTTP connection to the server, thus

1/6
opening the possibility to eavesdrop on the network traffic and extract sensitive information (e.g. session cookies).

Recommendation:
The Strict-Transport-Security HTTP header should be sent with each HTTPS response. The syntax is as follows:

Strict-Transport-Security: max-age=<seconds>[; includeSubDomains]

The parameter max-age gives the time frame for requirement of HTTPS in seconds and should be chosen quite high, e.g. several months.
A value below 7776000 is considered as too low by this scanner check.
The flag includeSubDomains defines that the policy applies also for sub domains of the sender of the response.

Classification:
CWE : CWE-693
OWASP Top 10 - 2017 : A6 - Security Misconfiguration
OWASP Top 10 - 2021 : A5 - Security Misconfiguration

 Missing security header: X-Content-Type-Options CONFIRMED


port 443/tcp

URL Evidence

Response headers do not include the X-Content-Type-Options HTTP security header


https://www.binance.com/
Request / Response

 Details

Risk description:
The risk is that lack of this header could make possible attacks such as Cross-Site Scripting or phishing in Internet Explorer browsers.

Recommendation:
We recommend setting the X-Content-Type-Options header such as X-Content-Type-Options: nosniff .

References:
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options

Classification:
CWE : CWE-693
OWASP Top 10 - 2017 : A6 - Security Misconfiguration
OWASP Top 10 - 2021 : A5 - Security Misconfiguration

 Missing security header: Content-Security-Policy CONFIRMED


port 443/tcp

URL Evidence

Response does not include the HTTP Content-Security-Policy security header or meta tag
https://www.binance.com/
Request / Response

 Details

Risk description:
The risk is that if the target application is vulnerable to XSS, lack of this header makes it easily exploitable by attackers.

Recommendation:
Configure the Content-Security-Header to be sent with each HTTP response in order to apply the specific policies needed by the
application.

References:
https://cheatsheetseries.owasp.org/cheatsheets/Content_Security_Policy_Cheat_Sheet.html
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy

Classification:
CWE : CWE-693
OWASP Top 10 - 2017 : A6 - Security Misconfiguration
OWASP Top 10 - 2021 : A5 - Security Misconfiguration

 Robots.txt file found CONFIRMED


port 443/tcp

2/6
URL

https://www.binance.com/robots.txt

 Details

Risk description:
There is no particular security risk in having a robots.txt file. However, it's important to note that adding endpoints in it should not be
considered a security measure, as this file can be directly accessed and read by anyone.

Recommendation:
We recommend you to manually review the entries from robots.txt and remove the ones which lead to sensitive locations in the website
(ex. administration panels, configuration files, etc).

References:
https://www.theregister.co.uk/2015/05/19/robotstxt/

Classification:
OWASP Top 10 - 2017 : A6 - Security Misconfiguration
OWASP Top 10 - 2021 : A5 - Security Misconfiguration

 Server software and technology found UNCONFIRMED 


port 443/tcp

Software / Version Category

Amazon Web Services PaaS

Amazon CloudFront CDN

 Details

Risk description:
The risk is that an attacker could use this information to mount specific attacks against the identified software type and version.

Recommendation:
We recommend you to eliminate the information which permits the identification of software platform, technology, server and operating
system: HTTP server headers, HTML meta information, etc.

References:
https://owasp.org/www-project-web-security-testing-guide/stable/4-Web_Application_Security_Testing/01-Information_Gathering/02-
Fingerprint_Web_Server.html

Classification:
OWASP Top 10 - 2017 : A6 - Security Misconfiguration
OWASP Top 10 - 2021 : A5 - Security Misconfiguration

 Website is accessible.

 Nothing was found for vulnerabilities of server-side software.

 Nothing was found for client access policies.

 Nothing was found for absence of the security.txt file.

 Nothing was found for use of untrusted certificates.

 Nothing was found for enabled HTTP debug methods.

3/6
 Nothing was found for enabled HTTP OPTIONS method.

 Nothing was found for secure communication.

 Nothing was found for directory listing.

 Nothing was found for passwords submitted unencrypted.

 Nothing was found for error messages.

 Nothing was found for debug messages.

 Nothing was found for code comments.

 Nothing was found for missing HTTP header - Referrer.

 Nothing was found for passwords submitted in URLs.

 Nothing was found for domain too loose set for cookies.

 Nothing was found for mixed content between HTTP and HTTPS.

 Nothing was found for cross domain file inclusion.

 Nothing was found for internal error code.

 Nothing was found for HttpOnly flag of cookie.

 Nothing was found for Secure flag of cookie.

 Nothing was found for login interfaces.

 Nothing was found for secure password submission.

 Nothing was found for sensitive data.

 Nothing was found for unsafe HTTP header Content Security Policy.

4/6
 Nothing was found for OpenAPI files.

 Nothing was found for file upload.

 Nothing was found for SQL statement in request parameter.

 Nothing was found for password returned in later response.

 Nothing was found for Path Disclosure.

 Nothing was found for Session Token in URL.

 Nothing was found for API endpoints.

 Nothing was found for emails.

 Nothing was found for missing HTTP header - Rate Limit.

Scan coverage information

List of tests performed (39/39)


 Test initial connection
 Scanned for missing HTTP header - Strict-Transport-Security
 Scanned for missing HTTP header - X-Content-Type-Options
 Scanned for missing HTTP header - Content Security Policy
 Scanned for website technologies
 Scanned for version-based vulnerabilities of server-side software
 Scanned for client access policies
 Scanned for robots.txt file
 Scanned for absence of the security.txt file
 Scanned for use of untrusted certificates
 Scanned for enabled HTTP debug methods
 Scanned for enabled HTTP OPTIONS method
 Scanned for secure communication
 Scanned for directory listing
 Scanned for passwords submitted unencrypted
 Scanned for error messages
 Scanned for debug messages
 Scanned for code comments
 Scanned for missing HTTP header - Referrer
 Scanned for passwords submitted in URLs
 Scanned for domain too loose set for cookies
 Scanned for mixed content between HTTP and HTTPS
 Scanned for cross domain file inclusion
 Scanned for internal error code
 Scanned for HttpOnly flag of cookie
 Scanned for Secure flag of cookie
 Scanned for login interfaces
 Scanned for secure password submission
 Scanned for sensitive data
 Scanned for unsafe HTTP header Content Security Policy
 Scanned for OpenAPI files
 Scanned for file upload
 Scanned for SQL statement in request parameter
 Scanned for password returned in later response

5/6
 Scanned for Path Disclosure
 Scanned for Session Token in URL
 Scanned for API endpoints
 Scanned for emails
 Scanned for missing HTTP header - Rate Limit

Scan parameters
target: https://www.binance.com/
scan_type: Light
authentication: False

Scan stats
Unique Injection Points Detected: 1
URLs spidered: 1
Total number of HTTP requests: 10
Average time until a response was
180ms
received:

6/6

You might also like