OneForAll是一款功能强大的子域收集工具

Build Content-Security-Policy headers from a JSON file (or build them programmatically)

PHP Secure Headers

Collection of scripts, thoughts about CSP (Content Security Policy)

Help secure .net core apps with various HTTP headers (such as CSP's)

A Burp Plugin for Detecting Weaknesses in Content Security Policies

Check any website (or set of websites) for insecure security headers.

Given a list of hosts, this small utility fetches all whitelisted domains from the hosts' CSPs.

A CSP collector written in Golang

A Gatsby plugin which adds strict Content Security Policy to your project.

☔️A curated list of tools, articles & resources to help take your frontend security to the next level. Feel free to contribute!

Module for Nuxt.js to configure security headers and more

A tiny (5.48Mb light standalone binary) static web server with customizable behavior, secure and monitored by default.

🔐 Content-Security-Policy Violation Reporting API

Content Security Policy engine for Go/Golang. Unit test your CSP rules!

Kirby 3 Plugin for easier Security Headers setup

Downgrade content-security-policy version and fidelity to support the requesting browser

Content security policy reporting and enforcing tool for Moodle

Running JavaScript in electron renderers with CSP (https://stackoverflow.com/questions/58230686/run-non-inline-js-locally-in-electron)

middlewares in golang

A simple http header scanner

Go HTTP Middleware with dynamic CSP nonce and much more

Content Security Policy plugin for Phalcon Framework

Build Iframe. Ignore X-Frame-Options, Content-Security-Policy, X-Content-Type-Options, X-Xss-Protection etc.

Content Security Policy Decomposer & Evaluator

Plug module for generating a Content Security Policy header

A builder tool to help generate Content Security Policies in a type-safe way

Generate a CSP header from your webpack build