As per title, a number of bug bounty programs, vendors or type of assessments in general, may require testers to send traffic using custom HTTP headers for identification purposes from teams such as SOC.
Since Amass does port scanning + SSL grabbing with the -active flag, I think it may be handy to have a flag and allow users to set a custom HTTP header along with -active. Maybe we could call it -custom-http-header.
Hello,
As per title, a number of bug bounty programs, vendors or type of assessments in general, may require testers to send traffic using custom HTTP headers for identification purposes from teams such as SOC.
Since Amass does port scanning + SSL grabbing with the
-active
flag, I think it may be handy to have a flag and allow users to set a custom HTTP header along with-active
. Maybe we could call it-custom-http-header
.Thoughts?