# WEB - [Аналитика & Маркетинг](/offensive/appsec/technologies/web/analitika-and-marketing.md) - [Dark](/offensive/appsec/technologies/web/analitika-and-marketing/dark.md) - [Dark SEO](/offensive/appsec/technologies/web/analitika-and-marketing/dark-seo.md) - [Просто список](/offensive/appsec/technologies/web/analitika-and-marketing/prosto-spisok.md) - [RSS-каналы](/offensive/appsec/technologies/web/rss-kanaly.md) - [Клиенты](/offensive/appsec/technologies/web/rss-kanaly/klienty.md) - [Atom](/offensive/appsec/technologies/web/rss-kanaly/atom.md) - [CMIS](/offensive/appsec/technologies/web/cmis.md) - [About](/offensive/appsec/technologies/web/cmis/about.md) - [HTTP/WEB](/offensive/appsec/technologies/web/http-web.md) - [Рекомендуемые заголовки (Headers)](/offensive/appsec/technologies/web/http-web/rekomenduemye-zagolovki-headers.md) - [HSTS](/offensive/appsec/technologies/web/http-web/hsts.md) - [SameSite](/offensive/appsec/technologies/web/http-web/samesite.md) - [Content-Security-Policy (CSP)](/offensive/appsec/technologies/web/http-web/content-security-policy-csp.md) - [Same-Origin Policy (SOP)](/offensive/appsec/technologies/web/http-web/same-origin-policy-sop.md) - [Cross-Origin Resource Sharing (CORS)](/offensive/appsec/technologies/web/http-web/cross-origin-resource-sharing-cors.md) - [Типы запросов](/offensive/appsec/technologies/web/http-web/tipy-zaprosov.md) - [First Party Sets](/offensive/appsec/technologies/web/http-web/first-party-sets.md) - [Subresource Integrity (SRI)](/offensive/appsec/technologies/web/http-web/subresource-integrity-sri.md) - [HTTP Reverse Proxy](/offensive/appsec/technologies/web/http-web/http-reverse-proxy.md) - [Papers & Resources](/offensive/appsec/technologies/web/http-web/papers-and-resources.md) - [CMS](/offensive/appsec/technologies/web/cms.md): Управление контентом сайта - [ModX](/offensive/appsec/technologies/web/cms/modx.md) - [Joomla](/offensive/appsec/technologies/web/cms/joomla.md) - [Drupal](/offensive/appsec/technologies/web/cms/drupal.md) - [WordPress](/offensive/appsec/technologies/web/cms/wordpress.md) - [Liferay](/offensive/appsec/technologies/web/cms/liferay.md) - [Админки/CRM](/offensive/appsec/technologies/web/adminki-crm.md): Управление взаимоотношениями с клиентами - [Zend Framework](/offensive/appsec/technologies/web/adminki-crm/zend-framework.md) - [Bitrix](/offensive/appsec/technologies/web/adminki-crm/bitrix.md) - [Salesforce](/offensive/appsec/technologies/web/adminki-crm/salesforce.md) - [WAF](/offensive/appsec/technologies/web/waf.md) - [GraphQL](/offensive/appsec/technologies/web/graphql.md) - [Virtual Hosts](/offensive/appsec/technologies/web/virtual-hosts.md) - [OAUTH/OpenID/2FA](/offensive/appsec/technologies/web/oauth-openid-2fa.md) - [Общие рекомендации для авторизации](/offensive/appsec/technologies/web/oauth-openid-2fa/obshie-rekomendacii-dlya-avtorizacii.md) - [2FA](/offensive/appsec/technologies/web/oauth-openid-2fa/2fa.md) - [OAuth 2.0](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1.md) - [About](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/about.md) - [Definitions](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/definitions.md) - [Clients](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/definitions/clients.md) - [Tokens](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/definitions/tokens.md) - [Scopes](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/definitions/scopes.md) - [Grant Types](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/definitions/grant-types.md) - [Redirect URL](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/definitions/redirect-url.md) - [The Resourse Server](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/definitions/the-resourse-server.md) - [Flows](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows.md) - [Server Side App Authorization Flow](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/server-side-app-authorization-flow.md) - [Single Page App Auhtorization Flow](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/single-page-app-auhtorization-flow.md) - [Mobile and Native Apps Authorization Flow](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/mobile-and-native-apps-authorization-flow.md) - [Authorization Flow](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/authorization-flow.md) - [Access Tokens Flow](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/access-tokens-flow.md) - [Authorization Code Request](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/access-tokens-flow/authorization-code-request.md) - [Password Grant](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/access-tokens-flow/password-grant.md) - [Client Credentials](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/access-tokens-flow/client-credentials.md) - [Access Token Reponse](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/access-tokens-flow/access-token-reponse.md) - [Access Token Lifetime](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/access-tokens-flow/access-token-lifetime.md) - [Refreshing Access Tokens](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/access-tokens-flow/refreshing-access-tokens.md) - [Making Authenticated Requests](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/access-tokens-flow/making-authenticated-requests.md) - [Listing Authorizations and Revoking Access Flow](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/listing-authorizations-and-revoking-access-flow.md) - [OAuth for Browserless and Input Constrained Devices](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/oauth-for-browserless-and-input-constrained-devices.md) - [PKCE](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/pkce.md) - [Token Introspection Server Flow](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/flows/token-introspection-server-flow.md) - [Vulnerabilities](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/vulnerabilities.md) - [Common 1](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/vulnerabilities/common.md) - [Common 2](/offensive/appsec/technologies/web/oauth-openid-2fa/oauth-1/vulnerabilities/common-2.md) - [OpenID Connect (OIDC)](/offensive/appsec/technologies/web/oauth-openid-2fa/openid.md) - [About](/offensive/appsec/technologies/web/oauth-openid-2fa/openid/about.md) - [Vulnerabilities](/offensive/appsec/technologies/web/oauth-openid-2fa/openid/vulnerabilities.md) - [Papers](/offensive/appsec/technologies/web/oauth-openid-2fa/openid/papers.md) - [IndieAuth](/offensive/appsec/technologies/web/oauth-openid-2fa/indieauth.md) - [Разница между OAuth и OpenID](/offensive/appsec/technologies/web/oauth-openid-2fa/raznica-mezhdu-oauth-i-openid.md) - [JWT](/offensive/appsec/technologies/web/oauth-openid-2fa/jwt.md) - [Servers](/offensive/appsec/technologies/web/servers.md) - [Oracle WebLogic](/offensive/appsec/technologies/web/servers/oracle-weblogic.md) - [Jetty](/offensive/appsec/technologies/web/servers/jetty.md) - [JBoss (WildFly)](/offensive/appsec/technologies/web/servers/jboss-wildfly.md) - [Nginx](/offensive/appsec/technologies/web/servers/nginx.md) - [Apache](/offensive/appsec/technologies/web/servers/apache.md) - [.htaccess](/offensive/appsec/technologies/web/servers/apache/.htaccess.md): настройка перенаправлений и управление конфигурацией веб-сервера - [\/server-status](/offensive/appsec/technologies/web/servers/apache/less-than-server-url-greater-than-server-status.md) - [Apache Tomcat](/offensive/appsec/technologies/web/servers/apache/apache-tomcat.md): Apache Tomcat is a long-lived, open source Java servlet container that implements several core Java enterprise specs, namely the Java Servlet, JavaServer Pages (JSP), and WebSockets APIs. - [Apache Struts2](/offensive/appsec/technologies/web/servers/apache/apache-struts2.md): Фреймворк для разработки веб-приложений - [CVE](/offensive/appsec/technologies/web/servers/apache/cve.md) - [F5 BIG-IP](/offensive/appsec/technologies/web/servers/f5-big-ip.md)