CSP Scanner: Test, Analyze & Evaluate CSP

Best Content-Security-Policy tool to validate and check XSS, Clickjacking & Formjacking protection grade and to detect CSP bypasses.

What is CSP Scanner: Test, Analyze & Evaluate CSP?

CSP Scanner: Test, Analyze & Evaluate CSP is a Chrome extension that helps developers and security experts inspect and understand a site's Content Security Policy. It validates protection against client-side attacks like XSS, clickjacking, and formjacking while providing tips and bypass detection.

Download

Stats

This extension was removed from Chrome Web Store on 2022-07-24

By: http://cspscanner.com

Users: 2,000+

Rating: 4.82 (11)

Version: 1.1.7 (Last updated: 2021-12-31)

Creation date: 2020-12-18

Risk impact: High risk impact

Risk likelihood: High risk likelihood

Manifest version: 2

Permissions:

webRequest
tabs
http://*/*
https://*/*

Size: 432.13K

Email: su*****@rapidsec.com

URLs: Website ,Privacy policy

Stats date:

Other platforms

Not available on Firefox

Not available on Edge

Want to check extension ranking and stats more quickly for other Chrome extensions? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Chrome Web Store.

Summary

Analyze keywords

CSP Scanner allows developers and security experts to easily inspect a site’s Content Security Policy (CSP) and understand wether it serves as a strong mitigation against client-side attacks like XSS, Clickjacking, Formjacking, Data Exfiltration and more.

The extension runs with the same logic as CSPscanner.com tool, and is built combining years of cumulative best practice with the Content-Security-Policy technology and how to most effectively block client-side attacks.

The tool may suggest a Grade / Score / Tips / Bypasses to a presented CSP. These are to be taken as help to developers only, and RapidSec provides no guarantees or warranties for this tool.

If you are looking to automate the deployment of Content-Security-Policy (CSP), along with other important security controls (SameSite, Security headers), you can use RapidSec.com .

User reviews

Wow! I should find this CSP tool a lot time ago! It helped me a lot to find and close really big security issues in my web app.

Dmytro Husiev, 2021-04-07

tratando de entender

Adrian Moreno, 2021-04-07

Awesome and seamless experience.

Maor Fridman, 2021-01-14

View all user reviews

Safety

Risk impact

CSP Scanner: Test, Analyze & Evaluate CSP is risky to use as it requires a number of sensitive permissions that can potentially harm your browser and steal your data. Exercise caution when installing this extension. Review carefully before installing. We recommend that you only install CSP Scanner: Test, Analyze & Evaluate CSP if you trust the publisher.