cis-nginx-v300-2-4-2

Ensures NGINX rejects requests for unknown host names, enhancing security and preventing potential Host Header attacks.

Install this skill

91/100

Security score

The cis-nginx-v300-2-4-2 skill was audited on May 15, 2026 and we found 5 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 59

Curl to non-GitHub URL

SourceSKILL.md

59	curl -k -v https://127.0.0.1 -H 'Host: invalid.example.com'

low line 59

External URL reference

SourceSKILL.md

59	curl -k -v https://127.0.0.1 -H 'Host: invalid.example.com'

low line 99

External URL reference

SourceSKILL.md

99	1. https://nginx.org/en/docs/http/request_processing.html

low line 101

External URL reference

SourceSKILL.md

101	3. https://owasp.org/www-project-web-security-testing-guide/latest/4-Web_Application_Security_Testing/07-Input_Validation_Testing/17-Testing_for_Host_Header_Injection

low line 102

External URL reference

SourceSKILL.md

102	4. https://portswigger.net/web-security/host-header

Scanned on May 15, 2026

View Security Dashboard

Installation guide →

GitHub Stars 283

Rate this skill

Categorydevelopment

UpdatedMay 29, 2026

backend devops devops-sre backend-developer security-engineer development

CyberStrikeus/CyberStrike