Skip to content

Lab11 submission: Basanov Maxim#11

Open
scruffyscarf wants to merge 1 commit intomainfrom
feature/lab11
Open

Lab11 submission: Basanov Maxim#11
scruffyscarf wants to merge 1 commit intomainfrom
feature/lab11

Conversation

@scruffyscarf
Copy link
Owner

@scruffyscarf scruffyscarf commented Nov 3, 2025

Goal

Place OWASP Juice Shop behind an Nginx reverse proxy and harden it with security headers, TLS, and request rate limiting β€” without changing app code.

Changes

Added labs/lab11/analysis/headers-http.txt
Added labs/lab11/analysis/headers-https.txt
Added labs/lab11/analysis/rate-limit-test.txt
Added labs/lab11/analysis/testssl.txt
Added labs/lab11/logs/access.log
Added labs/lab11/logs/error.log
Added labs/lab11/reverse-proxy/certs/localhost.crt
Added labs/lab11/reverse-proxy/certs/localhost.key
Added labs/submission11.md

Testing

No testing.

Artifacts & Screenshots

labs/lab11
β”œβ”€β”€ analysis
β”‚   β”œβ”€β”€ headers-http.txt
β”‚   β”œβ”€β”€ headers-https.txt
β”‚   β”œβ”€β”€ rate-limit-test.txt
β”‚   └── testssl.txt
β”œβ”€β”€ docker-compose.yml
β”œβ”€β”€ logs
β”‚   β”œβ”€β”€ access.log
β”‚   └── error.log
└── reverse-proxy
    β”œβ”€β”€ certs
    β”‚   β”œβ”€β”€ localhost.crt
    β”‚   └── localhost.key
    └── nginx.conf

Checklist

  • Task 1 β€” Reverse proxy compose setup
  • Task 2 β€” Security headers verification
  • Task 3 β€” TLS + HSTS + rate limiting + timeouts (+ testssl)
  • PR has a clear and descriptive title
  • Documentation has been updated if necessary
  • No sensitive data or large temporary files have been committed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@scruffyscarf