CSP Content Security Policy Generator

Best Content-Security-Policy generator to automatically create Strict CSP policies (with SHA support) for any website.

CSP Content Security Policy Generator - Best CSP Generator for Websites

CSP Content Security Policy Generator is a Firefox add-on that allows developers, IT teams, and security experts to easily generate strict Content Security Policies (CSPs) for websites, mitigating against client-side attacks like XSS, Clickjacking, and more.

Add-on stats

By: RapidSec
Users: 384
2
Rating: 3.00
(4)
Version: 1.9.0 (Last updated: 2022-01-28)
Creation date: 2021-12-14
Weekly download count: 26
Firefox on Android: No
Risk impact: High risk impact
Risk likelihood:
Manifest version: 2
Permissions:
  • webRequest
  • webRequestBlocking
  • storage
  • alarms
  • tabs
  • activeTab
  • http://*/
  • https://*/
Size: 440.44K

Other platforms

Not available on Chrome
Not available on Android
Not available on Edge
Want to check extension ranking and stats more quickly for other Firefox add-ons? Install Chrome-Stats extension to view Firefox-Stats data as you browse the Firefox Browser Add-ons.

Add-on summary

CSP Generator allows developers, IT teams, and security experts to easily generate a Content Security Policy (CSP) for a public, or internal site - mitigating against client-side attacks like XSS, Clickjacking, Formjacking, Data Exfiltration and more.

The extension runs with similar logic as the rapidsec.com CSP generator, and is built combining years of cumulative best practice with the Content-Security-Policy technology and how to most effectively block client-side attacks.

When deploying the generated policies - you must first use the CSP report-only mode, with a proper reporting endpoint (sign up at RapidSec.com).

This is a free tool to help you on your CSP journey, and RapidSec provides no guarantees or warranties for it.

If you are looking to automate the deployment of Content-Security-Policy (CSP), along with other important security controls (SameSite, Security headers), you can use RapidSec.com .

User reviews

Hit the start button and it flashes to the next screen and right back to the start page.
View all user reviews

Add-on safety

Risk impact

CSP Content Security Policy Generator requires some sensitive permissions that could impact your browser and data security. Exercise caution before installing.

Risk likelihood

CSP Content Security Policy Generator has earned a fairly good reputation and likely can be trusted.

Upgrade to see risk analysis details