GitHub topics: content-security-policy

Repositories

seguinleo/WebSecurityCheatSheet

Reliable, safe and up-to-date guide to secure your web JavaScript projects

Size: 13.7 KB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 0 - Forks: 0

AbuBacker-Ameen/csp-header-generator

Simple Python CLI tool designed to automate generating secure and precise Content Security Policy (CSP) headers to mitigate risks like cross-site scripting (XSS).

Language: Python - Size: 29.3 KB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 1 - Forks: 0

shmilylty/OneForAll

OneForAll是一款功能强大的子域收集工具

Language: Python - Size: 103 MB - Last synced at: 1 day ago - Pushed at: 6 months ago - Stars: 8,854 - Forks: 1,353

moveyourdigital/cloudflare-worker-csp-nonce

A Cloudflare worker to generate and inject Content Security Policy nonces in returned HTML pages.

Language: JavaScript - Size: 8.79 KB - Last synced at: about 17 hours ago - Pushed at: over 4 years ago - Stars: 19 - Forks: 4

meteorlxy/csp-helper

Helpers for creating Content Security Policy (CSP) header.

Language: TypeScript - Size: 511 KB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 4 - Forks: 0

reside-eng/fortifyjs

FortifyJS is a library focused on delivering security headers for web applications within the JavaScript ecosystem

Language: TypeScript - Size: 13.5 MB - Last synced at: 3 days ago - Pushed at: 4 days ago - Stars: 0 - Forks: 1

bonigarcia/browserwatcher

Browser extension for console monitoring, tab recording, Content Security Policy (CSP) disabling, and JavaScript/CSS injection

Language: Java - Size: 3.13 MB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 12 - Forks: 1

atilafassina/shieldwall

Secure your Fullstack App 🛡️

Language: TypeScript - Size: 212 KB - Last synced at: 4 days ago - Pushed at: about 2 months ago - Stars: 28 - Forks: 1

Nikol2004/TripleA-Website

The official website of Ambassadors Aligned (Triple A) – a student-led global association. Built with Next.js, Tailwind, and TypeScript.

Language: TypeScript - Size: 2.97 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 0 - Forks: 0

sjinks/hwp-csp-plugin

Content Security Policy plugin for html-webpack-plugin

Language: TypeScript - Size: 2.95 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 2 - Forks: 1

fabriziosalmi/websites-monitor

Websites monitoring via GitHub Actions (expiration, security, performances, privacy, SEO)

Language: Python - Size: 526 KB - Last synced at: 7 days ago - Pushed at: 8 days ago - Stars: 45 - Forks: 19

edoardottt/csprecon

Discover new target domains using Content Security Policy

Language: Go - Size: 6.49 MB - Last synced at: 7 days ago - Pushed at: 8 days ago - Stars: 417 - Forks: 49

github/secure_headers

Manages application of security headers with many safe defaults

Language: Ruby - Size: 1.62 MB - Last synced at: 3 days ago - Pushed at: 10 days ago - Stars: 3,170 - Forks: 254

scottstraughan/jekyll-content-security-policy-generator

This Jekyll plugin generates a content-security-policy HTML meta tag for your static site based on images, styles, scripts, frames and more found within each static page. Also converts style attributes to style tags and generates SHA256 hashes for them.

Language: Ruby - Size: 56.6 KB - Last synced at: 4 days ago - Pushed at: about 4 years ago - Stars: 6 - Forks: 0

marthijn/Sidio.Web.Security

Helper functions and middleware to secure ASP.NET Core applications

Language: C# - Size: 1.22 MB - Last synced at: 9 days ago - Pushed at: 9 days ago - Stars: 3 - Forks: 0

moloch--/CSP-Bypass

A Burp Plugin for Detecting Weaknesses in Content Security Policies

Language: Python - Size: 137 KB - Last synced at: 6 days ago - Pushed at: almost 2 years ago - Stars: 168 - Forks: 36

andrewmarkham/contentsecuritypolicy

Episerver addon to help manage the sites content security policy.

Language: JavaScript - Size: 229 MB - Last synced at: 9 days ago - Pushed at: 9 days ago - Stars: 9 - Forks: 5

decodelabs/sanctum

Define and deploy Content Security Policies in your PHP application

Language: PHP - Size: 46.9 KB - Last synced at: 9 days ago - Pushed at: 11 days ago - Stars: 2 - Forks: 0

elusivecodes/FyreCSP

FyreCSP is a free, open-source content security policy library for PHP.

Language: PHP - Size: 226 KB - Last synced at: 12 days ago - Pushed at: 12 days ago - Stars: 0 - Forks: 0

TempeHS/The_Unsecure_PWA

An unsecure by-design PWA that students can analyse with a suite of tools and support to build their understanding of web-based secure software architecture.

Language: HTML - Size: 343 KB - Last synced at: 12 days ago - Pushed at: 13 days ago - Stars: 6 - Forks: 87

lisonge/Disable-CSP

A browser extension to disable http header Content-Security-Policy and html meta Content-Security-Policy

Language: TypeScript - Size: 103 KB - Last synced at: 12 days ago - Pushed at: 11 months ago - Stars: 64 - Forks: 9

bepsvpt/secure-headers

PHP Secure Headers

Language: PHP - Size: 511 KB - Last synced at: 4 days ago - Pushed at: 14 days ago - Stars: 524 - Forks: 46

omrilotan/csp

[experimental] CSP editor tool

Language: TypeScript - Size: 45.9 KB - Last synced at: about 24 hours ago - Pushed at: 16 days ago - Stars: 0 - Forks: 0

Stryzhevskyi/plural-forms-parser

Parse gettext Plural-Forms header without unsafe-eval

Language: JavaScript - Size: 76.2 KB - Last synced at: 6 days ago - Pushed at: 20 days ago - Stars: 0 - Forks: 0

DevExpress-Examples/asp-net-core-dashboard-content-security-policy

How to implement a nonce-based Content Security Policy (CSP) for an ASP.NET Core Dashboard Application

Language: C# - Size: 2.94 MB - Last synced at: 20 days ago - Pushed at: 20 days ago - Stars: 1 - Forks: 0

aidantwoods/SecureHeaders

A PHP library aiming to make the use of browser security features more accessible.

Language: PHP - Size: 672 KB - Last synced at: 4 days ago - Pushed at: over 1 year ago - Stars: 432 - Forks: 20

DevExpress-Examples/reporting-asp-net-core-content-security-policy

How to implement a nonce-based Content Security Policy (CSP) for an ASP.NET Core Application

Language: JavaScript - Size: 537 KB - Last synced at: 23 days ago - Pushed at: 23 days ago - Stars: 1 - Forks: 1

erwindevreugd/ContentSecurityPolicy

Content Security Policy for ASP.NET Core

Language: C# - Size: 48.8 KB - Last synced at: 4 days ago - Pushed at: almost 5 years ago - Stars: 3 - Forks: 1

northwood-labs/csp-parser

Parser and evaluator for Content Security Policy directives.

Language: Go - Size: 225 KB - Last synced at: 6 days ago - Pushed at: 25 days ago - Stars: 1 - Forks: 0

bejamas/gatsby-plugin-csp

A Gatsby plugin which adds strict Content Security Policy to your project.

Language: JavaScript - Size: 662 KB - Last synced at: 25 days ago - Pushed at: about 2 years ago - Stars: 37 - Forks: 15

pilat/csp-builder

Visual Content Security Policy (CSP) header builder and validator

Language: JavaScript - Size: 16.6 KB - Last synced at: 28 days ago - Pushed at: 28 days ago - Stars: 0 - Forks: 0

nico3333fr/CSP-useful

Collection of scripts, thoughts about CSP (Content Security Policy)

Language: PHP - Size: 956 KB - Last synced at: 23 days ago - Pushed at: 9 months ago - Stars: 493 - Forks: 59

jacobbednarz/go-csp-collector

A CSP collector written in Golang

Language: Go - Size: 1.78 MB - Last synced at: 20 days ago - Pushed at: 30 days ago - Stars: 107 - Forks: 26

catalyst/moodle-local_csp

Content security policy reporting and enforcing tool for Moodle

Language: PHP - Size: 172 KB - Last synced at: 20 days ago - Pushed at: about 1 month ago - Stars: 13 - Forks: 8

TypeError/secure

Lightweight modern Python library to add security headers (CSP, HSTS, etc.) to Django, Flask, FastAPI, and more. Secure defaults or fully customizable.

Language: Python - Size: 293 KB - Last synced at: 6 days ago - Pushed at: 6 months ago - Stars: 930 - Forks: 29

mrtc0/csp-html-webpack-plugin

Language: TypeScript - Size: 953 KB - Last synced at: 9 days ago - Pushed at: 11 days ago - Stars: 1 - Forks: 0

mcansh/http-helmet

easily add CSP and other security headers to your web application.

Language: TypeScript - Size: 2 MB - Last synced at: 6 days ago - Pushed at: 10 days ago - Stars: 19 - Forks: 1

Matthew-Wise/Umbraco-CSP-manager

Content security policy manager for Umbraco

Language: JavaScript - Size: 1.17 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 20 - Forks: 8

paragonie/csp-builder

Build Content-Security-Policy headers from a JSON file (or build them programmatically)

Language: PHP - Size: 171 KB - Last synced at: 10 days ago - Pushed at: 4 months ago - Stars: 543 - Forks: 39

frux/csp

Monorepo for CSP-related packages

Language: TypeScript - Size: 813 KB - Last synced at: 5 days ago - Pushed at: about 2 months ago - Stars: 22 - Forks: 6

einride/csp-evaluator-cli

A command line tool to validate Content-Security-Policy rules

Language: JavaScript - Size: 1.57 MB - Last synced at: about 11 hours ago - Pushed at: 23 days ago - Stars: 4 - Forks: 0

gwen001/csp-analyzer

Analyze Content-Security-Policy header of a given URL.

Language: Python - Size: 548 KB - Last synced at: 24 days ago - Pushed at: over 1 year ago - Stars: 31 - Forks: 9

RobDWaller/csp-generator

Manage and create Content Security Policies more easily.

Language: Rust - Size: 86.9 KB - Last synced at: 6 days ago - Pushed at: almost 5 years ago - Stars: 6 - Forks: 54

localnerve/csp-hashes

Flexible build library to generate script and style hashes for CSP headers or Meta tags

Language: JavaScript - Size: 643 KB - Last synced at: 12 days ago - Pushed at: about 2 months ago - Stars: 0 - Forks: 0

rustcohlnikov/awesome-frontend-security

☔️A curated list of tools, articles & resources to help take your frontend security to the next level. Feel free to contribute!

Size: 195 KB - Last synced at: 10 days ago - Pushed at: over 2 years ago - Stars: 70 - Forks: 6

Firesphere/silverstripe-csp-headers 📦

See https://codeberg.org/Firesphere/silverstripe-csp-headers.git

Language: PHP - Size: 351 KB - Last synced at: about 1 month ago - Pushed at: over 1 year ago - Stars: 8 - Forks: 11

LimeSoda/ls_security_headers

This TYPO3 extension offers configurable security headers for the frontend

Language: PHP - Size: 68.4 KB - Last synced at: 26 days ago - Pushed at: about 1 month ago - Stars: 4 - Forks: 0

LimeSoda/ls_csp_widget

Offers a widget to display the most recent content security policy (CSP) frontend violations

Language: PHP - Size: 13.7 KB - Last synced at: about 1 month ago - Pushed at: 2 months ago - Stars: 0 - Forks: 0

bnomei/kirby3-security-headers

Kirby Plugin for easier Content Security Policy Headers

Language: PHP - Size: 583 KB - Last synced at: 12 days ago - Pushed at: 2 months ago - Stars: 26 - Forks: 3

nswdpc/silverstripe-csp

Content Security Policy module for Silverstripe

Language: PHP - Size: 320 KB - Last synced at: 2 days ago - Pushed at: 6 months ago - Stars: 8 - Forks: 4

nibtime/next-safe-middleware

Strict CSP (Content-Security-Policy) for Next.js hybrid apps https://web.dev/strict-csp/

Language: TypeScript - Size: 261 MB - Last synced at: 11 days ago - Pushed at: almost 2 years ago - Stars: 84 - Forks: 20

jcubic/velvet

Vanilla JavaScript Universal CSS in JS library with CSP support

Language: TypeScript - Size: 285 KB - Last synced at: 10 days ago - Pushed at: over 1 year ago - Stars: 6 - Forks: 0

Flowpack/Flowpack.ContentSecurityPolicy

Configurable Content Security Policy for Neos CMS

Language: PHP - Size: 24.4 KB - Last synced at: 2 days ago - Pushed at: 3 months ago - Stars: 3 - Forks: 0

ezhttp/ezhttp

Lightweight webserver for containers in Golang with security and optimizations

Language: Go - Size: 6.98 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

kindspells/astro-shield

Astro integration to enhance your website's security with SubResource Integrity hashes, Content-Security-Policy headers, and other techniques.

Language: TypeScript - Size: 1.03 MB - Last synced at: 15 days ago - Pushed at: 4 months ago - Stars: 70 - Forks: 8

toyokumo/ring-middleware-csp

Ring middleware for Content Security Policy

Language: Clojure - Size: 39.1 KB - Last synced at: 5 days ago - Pushed at: over 1 year ago - Stars: 9 - Forks: 3

wille/reporting-api

Collect Content Security Policy, COEP, COOP, Document-Policy, Crash reports, Deprecation reports, Intervention reports and Network Error Logging

Language: TypeScript - Size: 187 KB - Last synced at: 14 days ago - Pushed at: 5 months ago - Stars: 5 - Forks: 0

pchaseh/cspy

Content Security Policy parsing utilities

Language: Python - Size: 12.7 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

c0r0n3r/cryptolyzer

CryptoLyzer is a fast, flexible and comprehensive server cryptographic protocol (TLS, SSL, SSH, DNSSEC) and related setting (HTTP headers, DNS records) analyzer and fingerprint (JA3, HASSH tag) generator with Python API and CLI. (read-only clone of the original GitLab project)

Language: Python - Size: 1.57 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 27 - Forks: 2

c0r0n3r/cryptoparser

Cryptographic protocol and security-related protocol piece parser (read-only clone of the original GitLab project)

Language: Python - Size: 1.01 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 7 - Forks: 0

MocioF/No-unsafe-inline

A wordpress plugin to set Content Security Policy (CSP) without using the 'unsafe-inline' keyword for script-src

Language: PHP - Size: 3 MB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 12 - Forks: 3

kathleenwest/mslearn-dotnet-docker

This is a simple microservices demo with a frontend web app (razor) and backend web api (asp.net core). The frontend utilizes the Blazor WebAssembly script in the browser. The backend web api simply delivers a Product listing and serves images for those products. The frontend web app queries the backend web api for products, then displays each one.

Language: C# - Size: 2.4 MB - Last synced at: about 1 month ago - Pushed at: over 1 year ago - Stars: 2 - Forks: 1

contributte/http

:sparkles: Extra contrib to nette/http (@nette)

Language: PHP - Size: 77.1 KB - Last synced at: 14 days ago - Pushed at: over 2 years ago - Stars: 4 - Forks: 4

rix4uni/cspfinder

Discover new target domains using Content Security Policy

Language: Go - Size: 1.95 KB - Last synced at: 10 days ago - Pushed at: 4 months ago - Stars: 1 - Forks: 1

dansmaculotte/nuxt-security 📦

Module for Nuxt.js to configure security headers and more

Language: JavaScript - Size: 3.98 MB - Last synced at: 9 days ago - Pushed at: 4 months ago - Stars: 57 - Forks: 8

jan53n/content-security-policy-parser

CSP3 Parser

Language: JavaScript - Size: 118 KB - Last synced at: 15 days ago - Pushed at: 4 months ago - Stars: 0 - Forks: 0

hendrixjoseph/spring-content-security-policy

A Content Security Policy builder and bean to help secure Spring applications.

Language: Java - Size: 27.3 KB - Last synced at: 11 days ago - Pushed at: 4 months ago - Stars: 2 - Forks: 1

Jenderal92/Clickjacking-Exploit-Detector

The Clickjacking Exploit Detector uses webpage scanning techniques to identify potential vulnerabilities and provide analysis of those elements.

Language: Python - Size: 4.88 KB - Last synced at: about 2 months ago - Pushed at: 5 months ago - Stars: 1 - Forks: 0

ItsIgnacioPortal/CSP-Integrity-Hash-Generator

Javascript to quickly generate CSP hashes for all script/style elements in a website.

Language: JavaScript - Size: 16.6 KB - Last synced at: 13 days ago - Pushed at: 12 months ago - Stars: 4 - Forks: 0

born05/craft-csp

Content Security Policy (or CSP) generator using nonces.

Language: PHP - Size: 23.4 KB - Last synced at: 14 days ago - Pushed at: 8 months ago - Stars: 11 - Forks: 10

mdownes/csp-html-linter

Lint your HTML for Content Security Policy Violations

Language: JavaScript - Size: 91.8 KB - Last synced at: about 1 month ago - Pushed at: 8 months ago - Stars: 1 - Forks: 0

ghidello/sotsera.blazor.server Fork of sotsera/sotsera.blazor.server

Some Blazor Server extensions

Language: C# - Size: 162 KB - Last synced at: 7 months ago - Pushed at: 7 months ago - Stars: 0 - Forks: 0

DataVaccinator/vaccinatorLib

The native vaccinator library

Language: C - Size: 455 KB - Last synced at: 7 months ago - Pushed at: 7 months ago - Stars: 0 - Forks: 0

mdownes/rollup-plugin-csp-html-linter

A Rollup plugin to lint your HTML for Content Security Policy Violations.

Language: JavaScript - Size: 92.8 KB - Last synced at: about 1 month ago - Pushed at: 8 months ago - Stars: 1 - Forks: 0

Val-istar-Guo/koa-csp

Used to set response header: Content-Security-Policy

Language: TypeScript - Size: 109 KB - Last synced at: 9 days ago - Pushed at: 8 months ago - Stars: 2 - Forks: 8

solaris0051/coffeeShopSample

coffeeshop sample

Language: HTML - Size: 7.7 MB - Last synced at: about 2 months ago - Pushed at: 8 months ago - Stars: 0 - Forks: 0

nizos/csp-docker

A Docker-based environment for testing and experimenting with Content Security Policies (CSP)

Language: Dockerfile - Size: 3.91 KB - Last synced at: about 1 month ago - Pushed at: 8 months ago - Stars: 0 - Forks: 0

erwindevreugd/ContentSecurityPolicyReporting

The Content Security Policy Reporting middleware for ASP.NET Core adds an api endpoint to an ASP.NET Core application for browsers to report content security policy violations.

Language: C# - Size: 519 KB - Last synced at: 5 months ago - Pushed at: over 7 years ago - Stars: 3 - Forks: 1

colecrouter/pages-csp-generator

Automatic CSP generation for Cloudflare Pages

Language: TypeScript - Size: 299 KB - Last synced at: 6 days ago - Pushed at: almost 3 years ago - Stars: 6 - Forks: 0

TerribleDev/HardHat

Help secure .net core apps with various HTTP headers (such as CSP's)

Language: C# - Size: 561 KB - Last synced at: 15 days ago - Pushed at: about 6 years ago - Stars: 141 - Forks: 7

dev4press/csp-library

List of directive rules for popular website and services for use in the Content Security Policy header.

Size: 105 KB - Last synced at: 9 months ago - Pushed at: 9 months ago - Stars: 3 - Forks: 0

Peter-Juhasz/aspnetcoresecurity

Security extensions for ASP.NET Core

Language: C# - Size: 150 KB - Last synced at: 3 days ago - Pushed at: over 3 years ago - Stars: 11 - Forks: 1

d4l3k/go-csp-engine

Content Security Policy engine for Go/Golang. Unit test your CSP rules!

Language: Go - Size: 23.4 KB - Last synced at: 25 days ago - Pushed at: almost 6 years ago - Stars: 10 - Forks: 4

ayushn21/bridgetown-content-security-policy

A Bridgetown plugin to add a Content Security Policy in a meta tag

Language: Ruby - Size: 42 KB - Last synced at: 10 days ago - Pushed at: about 2 years ago - Stars: 6 - Forks: 0

wieni/wmcontent_security_policy

A Drupal module for securing your site using a Content Security Policy header

Language: PHP - Size: 35.2 KB - Last synced at: 21 days ago - Pushed at: 21 days ago - Stars: 0 - Forks: 1

ancarda/security-headers 📦

A PHP library that helps with generating security headers

Language: PHP - Size: 95.7 KB - Last synced at: 10 months ago - Pushed at: over 5 years ago - Stars: 0 - Forks: 0

flipeador/node-http-cors

Node.js HTTP CORS middleware.

Language: JavaScript - Size: 9.77 KB - Last synced at: about 2 months ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0

Darker21/ToastE

A JavaScript Library to display customizable toast notifications.

Language: HTML - Size: 2.73 MB - Last synced at: about 1 month ago - Pushed at: 5 months ago - Stars: 0 - Forks: 0

jshawl/cspq

a csp playground

Language: Gleam - Size: 65.4 KB - Last synced at: 29 days ago - Pushed at: 11 months ago - Stars: 0 - Forks: 0

rodneylab/sveltekit-content-security-policy

SvelteKit Content Security Policy: how you can add CSP to reduce your Svelte site's cross-site scripting (XSS) attack surface.

Language: Svelte - Size: 2.99 MB - Last synced at: 18 days ago - Pushed at: over 1 year ago - Stars: 5 - Forks: 1

booyasatoshi/csp_generator

This Python script is designed to generate a Content Security Policy (CSP) for a given URL. It scans the URL, identifies all the JavaScript and CSS assets, computes their SHA-256 hashes, and creates a CSP policy. The policy helps in enhancing the security of web applications by specifying which resources are allowed to be loaded and executed.

Language: Python - Size: 10.7 KB - Last synced at: 11 months ago - Pushed at: 11 months ago - Stars: 0 - Forks: 0