content-security-policy
There are 172 repositories under content-security-policy topic.
shmilylty/OneForAll
OneForAll是一款功能强大的子域收集工具
github/secure_headers
Manages application of security headers with many safe defaults
paragonie/csp-builder
Build Content-Security-Policy headers from a JSON file (or build them programmatically)
bepsvpt/secure-headers
PHP Secure Headers
nico3333fr/CSP-useful
Collection of scripts, thoughts about CSP (Content Security Policy)
aidantwoods/SecureHeaders
A PHP library aiming to make the use of browser security features more accessible.
edoardottt/csprecon
Discover new target domains using Content Security Policy
koenbuyens/securityheaders
Check any website (or set of websites) for insecure security headers.
moloch--/CSP-Bypass
A Burp Plugin for Detecting Weaknesses in Content Security Policies
TerribleDev/HardHat
Help secure .net core apps with various HTTP headers (such as CSP's)
jacobbednarz/go-csp-collector
A CSP collector written in Golang
nibtime/next-safe-middleware
Strict CSP (Content-Security-Policy) for Next.js hybrid apps https://web.dev/strict-csp/
rustcohlnikov/awesome-frontend-security
☔️A curated list of tools, articles & resources to help take your frontend security to the next level. Feel free to contribute!
dansmaculotte/nuxt-security
Module for Nuxt.js to configure security headers and more
c0nrad/caspr
Content-Security-Policy report aggregator/analyzer
bejamas/gatsby-plugin-csp
A Gatsby plugin which adds strict Content Security Policy to your project.
rNeomy/javascript-toggle-on-and-off
A lightweight method to turn JavaScript on and off in multiple platforms (Firefox and Chromimum)
Ruulian/CSPass
This tool allows to automatically test for Content Security Policy bypass payloads.
WithoutHair/Disable-Content-Security-Policy
A chrome extension that helps you disable or bypass Content Security Policy(CSP),which is based on Manifest V3.
lisonge/Disable-CSP
A browser extension to disable http header Content-Security-Policy and html meta Content-Security-Policy
kindspells/astro-shield
Astro integration to enhance your website's security with SubResource Integrity hashes, Content-Security-Policy headers, and other techniques.
bnomei/kirby3-security-headers
Kirby Plugin for easier Security Headers setup
c0r0n3r/cryptolyzer
CryptoLyzer is a fast, flexible and comprehensive server cryptographic protocol (TLS, SSL, SSH, DNSSEC) and related setting (HTTP headers, DNS records) analyzer and fingerprint (JA3, HASSH tag) generator with Python API and CLI. (read-only clone of the original GitLab project)
gwen001/csp-analyzer
Analyze Content-Security-Policy header of a given URL.
guydumais/next-strict-csp
Hash-based Strict Content Security Policy generator for Next.js
xtian/plug_content_security_policy
Plug module for generating a Content Security Policy header
mhilker/cspr-collector
Content-Security-Policy Violation Reporting API
frux/csp
Monorepo for CSP-related packages
moveyourdigital/cloudflare-worker-csp-nonce
A Cloudflare worker to generate and inject Content Security Policy nonces in returned HTML pages.
finalduty/csp-report-collector
Content Security Policy Reporting Endpoint
srikrsna/security-headers
Go HTTP Middleware with dynamic CSP nonce and much more
catalyst/moodle-local_csp
Content security policy reporting and enforcing tool for Moodle
Peter-Juhasz/aspnetcoresecurity
Security extensions for ASP.NET Core
MocioF/No-unsafe-inline
A wordpress plugin to set Content Security Policy (CSP) without using the 'unsafe-inline' keyword for script-src
bonigarcia/browserwatcher
Browser extension for console monitoring, tab recording, Content Security Policy (CSP) disabling, and JavaScript/CSS injection
toyokumo/ring-middleware-csp
Ring middleware for Content Security Policy