killchain-compendium/Cookie Tampering.md at 3ffec99fccf00ad4df1a8fab6c8f374be6a8798b - killchain-compendium - Gitea: Git with a cup of tea

401 B

Raw Blame History

Components

Separator is ;
Name
Value
Domain
Path
Expires/Maxage
Size
HttpOnly, no access by client side scripts
Secure, HTTPs only
SameSite, cookie sent through cross-site request
SameParty, firt party requests only
Priority

Response

May look like this

Set-Cookie: <cookie-name>=<cookie-value>; Domain=<domain-value>; Secure; HttpOnly