10 Apr 2024 02:49 PM
Let me start by saying that I am new to the topic of Application Security (AoppSec) and I am using the Dynatrace Demo environment (https://{environmentid}.apps.dynatrace.com).
Coming to detail, the following is not clear to me regarding a reported attack (see attached screenshots, URL: https://{environmentid}.apps.dynatrace.com/ui/apps/dynatrace.classic.attacks/ui/security/attacks/170... ?gtf=-2h&gf=all):
How is it possible that an external IP (C.) had access to an internal resource not exposed on the internet (A.)?
More generally, how does Dynatrace:
Thanks,
Gabriele.
Solved! Go to Solution.
22 Apr 2024 05:34 PM - edited 24 Apr 2024 03:08 PM
Dear Gabriele,
going directly to your general questions:
Based on your feedback, we will also discuss how we can improve the existing documentation to reflect this information.
HTH, Chris
EDIT: refined my comment to make it clear, that the HTTP header list is currently not configurable.