CSP Auditor Logo

CSP Auditor

A plugin for viewing, detecting weak configurations, and generating Content Security Policy headers.

141
Application Security Open Source
Content Security Policy
Visit website
Compare
Compare
0
Explore Application Security12 AlternativesCompareStacksMarket MapExplore All Tools
MCPThe entire cybersecurity market, one prompt awayTry MCP Access

CSP Auditor Description

This plugin provides a readable view of CSP Headers in the Response Tab, passive scan rules to detect weak CSP configuration, and a CSP configuration generator based on the Burp crawler or manual browsing. The project is packaged as a ZAP and Burp plugin. For more context around Content-Security-Policy and how to apply it to your website, see their blog posts on the topic: [Building a Content Security Policy Configuration with CSP Auditor](http://gosecure.net/2017/07/20/building-a-content-security-policy-configuration-with-csp-auditor) and [Auditing CSP Headers with Burp and ZAP](https://gosecure.net/2016/06/28/auditing-csp-headers-with-burp-and-zap/)

CSP Auditor FAQ

Common questions about CSP Auditor including features, pricing, alternatives, and user reviews.

CSP Auditor is A plugin for viewing, detecting weak configurations, and generating Content Security Policy headers.. It is a Application Security solution designed to help security teams with Content Security Policy.

Have more questions? Browse our categories or search for specific tools.

FEATURED

Push Security Logo
Push Security
Zero Trust
CybersecRadars Logo
CybersecRadars
Threat Management
Hudson Rock Logo
Hudson Rock
Threat Management
Get Featured

ALTERNATIVES

Greenbone Web App Scanning Logo
Greenbone Web App Scanning

Managed web app security scanning service covering OWASP Top 10 vulnerabilities

0
ImmuniWeb® Neuron Logo
ImmuniWeb® Neuron

AI-enhanced web app vulnerability scanner with zero false-positive SLA

0
Escape API Security Platform Logo
Escape API Security Platform

DAST platform for API and web app security testing with business logic focus

0
StackHawk StackHawk Logo
StackHawk StackHawk

AppSec platform with API discovery, CI/CD-native DAST, and risk oversight

0
Miggo Security Logo
Miggo Security

Application monitoring and security platform that provides runtime visibility, threat detection, and automated response capabilities for application-layer security

0

POPULAR

RoboShadow Logo
RoboShadow
Vulnerability Assessment
OSINTLeak Real-time OSINT Leak Intelligence Logo
OSINTLeak Real-time OSINT Leak Intelligence
Threat Intelligence Platforms
Cybersec Feeds Logo
Cybersec Feeds
Threat Intelligence Platforms
TestSavant AI Security Assurance Platform Logo
TestSavant AI Security Assurance Platform
AI Red Teaming
Fabric Platform by BlackStork Logo
Fabric Platform by BlackStork
Security Information and Event Management
View Popular Tools →

TRENDING CATEGORIES

Digital Forensics and Incident Response
Digital Forensics and Incident Response (DFIR) tools for digital forensic analysis, evidence collection, malware analysis, and cyber incident investigation.
524
Threat Intelligence Platforms
TIP for collecting, analyzing, and sharing cyber threat data, indicators of compromise (IOCs), and threat feeds.
413
Managed Detection and Response
Managed Detection and Response (MDR) services that provide 24/7 threat monitoring, detection, and response capabilities managed by security experts.
299
Multi-Factor Authentication and Single Sign-On
Multi-factor authentication (MFA) and single sign-on (SSO) solutions for secure user authentication and access control.
296
Identity Governance and Administration
Identity Governance and Administration (IGA) platforms for identity lifecycle management, access governance, role management, and compliance reporting.
289
View All Categories →

Stay Updated with Mandos Brief

Get strategic cybersecurity insights in your inbox