# HTTP/WEB

- [Рекомендуемые заголовки (Headers)](/offensive/appsec/technologies/web/http-web/rekomenduemye-zagolovki-headers.md)
- [HSTS](/offensive/appsec/technologies/web/http-web/hsts.md)
- [SameSite](/offensive/appsec/technologies/web/http-web/samesite.md)
- [Content-Security-Policy (CSP)](/offensive/appsec/technologies/web/http-web/content-security-policy-csp.md)
- [Same-Origin Policy (SOP)](/offensive/appsec/technologies/web/http-web/same-origin-policy-sop.md)
- [Cross-Origin Resource Sharing (CORS)](/offensive/appsec/technologies/web/http-web/cross-origin-resource-sharing-cors.md)
- [Типы запросов](/offensive/appsec/technologies/web/http-web/tipy-zaprosov.md)
- [First Party Sets](/offensive/appsec/technologies/web/http-web/first-party-sets.md)
- [Subresource Integrity (SRI)](/offensive/appsec/technologies/web/http-web/subresource-integrity-sri.md)
- [HTTP Reverse Proxy](/offensive/appsec/technologies/web/http-web/http-reverse-proxy.md)
- [Papers & Resources](/offensive/appsec/technologies/web/http-web/papers-and-resources.md)