DisCORS

This extension allows disabling common security headers (CORS, CSP, X-FRAME-OPTIONS...) for a selected list of targets.

DisCORS

Install from Chrome Web Store

Extension stats

By: Han Tran
Users: 13
1
Version: 1.0 (Last updated: 2024-07-29)
Creation date: 2024-07-29
Risk impact: Moderate risk impact
Risk likelihood:
Manifest version: 3
Permissions:
  • storage
  • declarativeNetRequest
Host permissions:
  • <all_urls>
Size: 46.30K

Other platforms

Not available on Android
Not available on Firefox
Not available on Edge
Want to check extension ranking and stats more quickly for other Chrome extensions? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Chrome Web Store.

Extension summary

This extension allows user to select and disable some common HTTP security headers for a specific site or list of sites.

NOTE: Disabling HTTP security headers is NOT recommended. Please use it at your own risk for experiments/development purposes only.

DisCORS comes with 2 modes: ACTIVATED or DEACTIVATED.

DEACTIVATED Mode: You can DEACTIVATE the extension anytime to disable the security header bypass and go back to your normal browsing experience. DisCORS will not interfere with any of your browsing settings.

ACTIVATED Mode: You can ACTIVATE the extension anytime to enable the security header bypass. DisCORS will modify/remove the appropriate security header based on your configuration.

  • CORS headers: If enabled, DisCORS will bypass Access-Control-Allow-Origin & Access-Control-Allow-Methods header for the responses from targeted sites.
  • COOP/COEP/CORP: If enabled, DisCORS will bypass Cross-Origin-Opener-Policy & Cross-Origin-Embedder-Policy & Cross-Origin-Resource-Policy header for the responses from targeted sites.
  • X-Frame-Options: If enabled, DisCORS will bypass X-Frame-Options header for the responses from targeted sites.
  • Content-Security-Policy: If enabled, DisCORS will bypass Content-Security-Policy header for the responses from targeted sites.
  • Permissions-Policy: If enabled, DisCORS will bypass Permissions-Policy header for the responses from targeted sites.

User can specify a list of target sites (or leave the list empty to target ALL sites) and only the responses from the targeted sites will be modified.

Extension safety

Risk impact

DisCORS requires a few sensitive permissions. Exercise caution before installing.

Risk likelihood

DisCORS may not be trust-worthy. Avoid installing if possible unless you really trust this publisher.

Upgrade to see risk analysis details

Similar extensions

Here are some Chrome extensions that are similar to DisCORS: