This server intentionally demonstrates common TLS/SSL misconfigurations for security research and scanner training.
INTENTIONAL MISCONFIGS PRESENT: [WARN] Missing HSTS header (Strict-Transport-Security) [WARN] Missing Content-Security-Policy header [WARN] Missing X-Frame-Options header [WARN] Missing X-Content-Type-Options header [WARN] Referrer-Policy not set [INFO] TLS 1.2 + 1.3 enabled (TLS 1.0/1.1 disabled) [INFO] Self-signed cert simulation available at /self-signed/
This is a controlled honeypot environment. All access is logged.
Part of the LOKI Security Platform — zero-learn scanner training target.