CSP Tester

This extension helps web masters to test web application behaviour with Content Security Policy version 2.0 implemented.
What is CSP Tester?
"CSP Tester" is a useful Chrome extension that enables web masters to evaluate the performance and behaviour of their web applications with the implementation of Content Security Policy (CSP) version 2.0. The extension allows users to add URL Patterns, activate the policy, and observe potential CSP violations through the Developer Tools console. The findings help web masters make necessary changes in their policy settings for better security and functionality.
Download

Extension stats

By: oxdef
Users: 2,000+
Rating: 3.71 (7)
Version: 2.1 (Last updated: 2018-10-02)
Creation date: 2018-09-02
Risk impact: High risk impact
Risk likelihood: Very low risk likelihood
Manifest version: 2
Permissions:
  • webRequest
  • webRequestBlocking
  • <all_urls>
Size: 17.01K

Ranking

# 22034 ▼ 94
Other rankings
#1834 in Developer Tools ▼ 3 #58 in policy keyword 10 ▼ 2 #198 in developer tools keyword 59 ▲ 1

Other platforms

Not available on Firefox
Not available on Edge
Want to check extension ranking and stats more quickly for other Chrome extensions? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Chrome Web Store.

Extension summary

Analyze keywords

This extension helps web masters to test web application functionality with Content Security Policy (CSP) version 2.0 implemented.

Typical workflow looks like:

  1. Open the extension window
  2. Add into the URL Pattern a regular expression for the site that you want to test, for example ://yoursite.com/ (CSP Tester uses Chrome Match Patterns)
  3. Tick the e.g. "self" checkbox, check "Active" and Save the changes
  4. Open the Developer Tools and navigate to the tested site
  5. Confirm a number of CSP violations reported in the Developer Tools Console as well as possible visual changes
  6. Make changes in the policy based on these reports

User reviews

Very handy! i think the advanced mode is really all you need, weirdly it's way less complex than the default view, the only thing i could ask for is a bigger text box. Thanks!
by Matt “CiderPunk” Lander, 2023-04-03
strips upgrade-insecure-requests; which is annoying
by A Google user, 2018-04-07
Очищаются заполненные данные
by Влад Майсов, 2016-01-16
View all user reviews

Extension safety

Risk impact

CSP Tester requires some sensitive permissions that could impact your browser and data security. Exercise caution before installing.

Risk likelihood

CSP Tester has earned a good reputation and can be trusted.

Upgrade to see risk analysis details

Similar extensions

Here are some Chrome extensions that are similar to CSP Tester:

CSP Evaluator
CSP Evaluator
Lukas Weichselbaum
2.97
20,000+
Content Security Policy Override
Content Security Policy Override
https://rufflewind.com
4.22
3,000+
Allow CSP: Content-Security-Policy
Allow CSP: Content-Security-Policy
Muyor
5.00
6,000+
PageSpeed Insights (MV3)
PageSpeed Insights (MV3)
instwave.com
3.47
40,000+
Clickjacking Test
Clickjacking Test
Offcon Info Security
4.33
4,000+
HTTP Header Spy
HTTP Header Spy
https://www.donationbasedhosting.org
3.79
10,000+
Content Security Policy (CSP) Generator
Content Security Policy (CSP) Generator
https://csper.io
4.36
20,000+
Disable Content-Security-Policy
Disable Content-Security-Policy
Phil Grayson
3.64
60,000+
Security-Header-Extension
Security-Header-Extension
ACNS_cybersecurity_interns
4.86
3,000+
Caspr: Enforcer
Caspr: Enforcer
c0nrad
3.71
699
Tamper Chrome (extension)
Tamper Chrome (extension)
https://tamper.dev
3.26
40,000+
retire.js
retire.js
jadwigaostrowska803
4.89
20,000+