CSP Scanner: Test, Analyze & Evaluate CSP

Best Content-Security-Policy tool to validate and check XSS, Clickjacking & Formjacking protection grade and to detect CSP bypasses.
What is CSP Scanner: Test, Analyze & Evaluate CSP?
CSP Scanner: Test, Analyze & Evaluate CSP is a Chrome extension that helps developers and security experts inspect and understand a site's Content Security Policy. It validates protection against client-side attacks like XSS, clickjacking, and formjacking while providing tips and bypass detection.

Extension stats

This extension was removed from Chrome Web Store on 2022-07-24
Users: 2,000+
Rating: 4.82 (11)
Version: 1.1.7 (Last updated: 2021-12-31)
Creation date: 2020-12-18
Risk impact: High risk impact
Risk likelihood: High risk likelihood
Manifest version: 2
Permissions:
  • webRequest
  • tabs
  • http://*/*
  • https://*/*
Size: 432.13K

Other platforms

Not available on Firefox
Not available on Edge
Want to check extension ranking and stats more quickly for other Chrome extensions? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Chrome Web Store.

Extension summary

CSP Scanner allows developers and security experts to easily inspect a site’s Content Security Policy (CSP) and understand wether it serves as a strong mitigation against client-side attacks like XSS, Clickjacking, Formjacking, Data Exfiltration and more.

The extension runs with the same logic as CSPscanner.com tool, and is built combining years of cumulative best practice with the Content-Security-Policy technology and how to most effectively block client-side attacks.

The tool may suggest a Grade / Score / Tips / Bypasses to a presented CSP. These are to be taken as help to developers only, and RapidSec provides no guarantees or warranties for this tool.

If you are looking to automate the deployment of Content-Security-Policy (CSP), along with other important security controls (SameSite, Security headers), you can use RapidSec.com .

User reviews

Wow! I should find this CSP tool a lot time ago! It helped me a lot to find and close really big security issues in my web app.
by Dmytro Husiev, 2021-04-07

tratando de entender
by Adrian Moreno, 2021-04-07

Awesome and seamless experience.
by Maor Fridman, 2021-01-14
View all user reviews

Extension safety

Risk impact

CSP Scanner: Test, Analyze & Evaluate CSP requires some sensitive permissions that could impact your browser and data security. Exercise caution before installing.

Risk likelihood

CSP Scanner: Test, Analyze & Evaluate CSP may not be trust-worthy. Avoid installing if possible unless you really trust this publisher.

Upgrade to see risk analysis details

Promo images

CSP Scanner: Test, Analyze & Evaluate CSP marquee promo image
Marquee promo image
CSP Scanner: Test, Analyze & Evaluate CSP small promo image
Small promo image

Similar extensions

Here are some Chrome extensions that are similar to CSP Scanner: Test, Analyze & Evaluate CSP: