EXTPOSE
CSP Scanner: Test, Analyze & Evaluate CSP icon

CSP Scanner: Test, Analyze & Evaluate CSP

Extension Delisted

This extension is no longer available in the official store. Delisted on 2025-09-15.

Extension Actions

How to install an extension Open in Chrome Web Store
CRX ID
eoiiiomeoogcpnkdedcodoeaacpdfmdj
Description from extension meta

Best Content-Security-Policy tool to validate and check XSS, Clickjacking & Formjacking protection grade and to detect CSP bypasses.

Image from store
CSP Scanner: Test, Analyze & Evaluate CSP
Description from store

CSP Scanner allows developers and security experts to easily inspect a site’s Content Security Policy (CSP) and understand wether it serves as a strong mitigation against client-side attacks like XSS, Clickjacking, Formjacking, Data Exfiltration and more.

The extension runs with the same logic as CSPscanner.com tool, and is built combining years of cumulative best practice with the Content-Security-Policy technology and how to most effectively block client-side attacks.

The tool may suggest a Grade / Score / Tips / Bypasses to a presented CSP. These are to be taken as help to developers only, and RapidSec provides no guarantees or warranties for this tool.

If you are looking to automate the deployment of Content-Security-Policy (CSP), along with other important security controls (SameSite, Security headers), you can use RapidSec.com .

Latest reviews

Dmytro Husiev
Wow! I should find this CSP tool a lot time ago! It helped me a lot to find and close really big security issues in my web app.
Adrian Moreno
tratando de entender
Elad Rainshmidt
Very helpful tool, easy to use and help you overcome all kind of security issues you haven't even thought on. Great Job and Thanks!!!
Maor Fridman
Awesome and seamless experience.
Vadim Zak
Excellent tool! helped me patch several nasty security holes...
Ido Azran
Amazing, been looking for something like that for weeks! Really easy to highly recommended. Thank you.
Ido Yablonka
Strong, very useful and helpful - well done!
VINAY PUPPAL
Super helpful extension! Finding edge cases in CSP is definitely annoying, but this saved me a lot of time to create best possible CSP for my site.
Дмитрий Гусев
It was a great experience to build and test my app CSP policy using this smart tool. The description of directives and configuration is awesome!
Alessandro Magionami
Used it to improve both my knowledge of CSP and the CSP configuration of my small application. Great explanations of each directive of the header.
Shai Alon
CSP scanner is the best way to evaluate a site’s content-security-policy and check if it actually protects against XSS, Clickjacking and data exfiltration. It was really amazing using the extension to see just how vulnerable most sites are to CSP bypasses - or worse, don’t have a CSP protecting their site at all!