CORS misconfigurations are the silent data leak vector. This audit checks all CORS response headers for the classic foot-guns.
Read the story behind this tool: Why this tool exists — security stack.