New version of the Kraken Stress Testing Toolkit.
List of changes
- Fixed multiple vulnerabilities of the server API
- Content Security Policy (CSP) Header Not Set (CWE-693)
- Missing Anti-clickjacking Header (CWE-1021)
- Server Leaks Version Information via "Server" HTTP Response Header Field (CWE-497)
- Path Traversal (CWE-35) in API method /templates/add
- X-Content-Type-Options Header Missing (CWE-693)
- Uncontrolled Resource Consumption (CWE-400) resulting in denial of service
- Incorrect reading of parameters with a significant number of requests (CWE 125) leading to denial of service
- Revised logging mechanism
- Logging improvement, now errors are written to a separate log
- Added API server response code to the log
English 
Русский 
Deutsch 
Română