CSP Content Security Policy Generator

Best Content-Security-Policy generator to automatically create Strict CSP policies (with SHA support) for any website.

What is CSP Content Security Policy Generator?

CSP Content Security Policy Generator is a must-have Edge add-on for IT teams and security experts. It allows for the automated generation of stringent Content Security Policies that work to thwart various client-side attacks including XSS, Clickjacking, Formjacking, and Data Exfiltration. Developed following the best practice in CSP technology, it delivers the most effective solutions for blocking these threats. This free tool is backed by RapidSec, a leader in automated deployment of security controls.

Download

Add-on stats

By: RapidSec

View on Edge Add-on Store

Users: 877

Rating: 5.00 (1)

Version: 1.9.0 (Last updated: 2022-01-28)

Creation date: 2022-01-28

Risk impact: High risk impact

Risk likelihood: Low risk likelihood

Manifest version: 2

Permissions:

webRequest
webRequestBlocking
storage
alarms
tabs
activeTab
http://*/
https://*/

Size: 436.07K

URLs: Website ,Privacy policy

Ranking

# 5020 ▼ 4

Other rankings

#332 in Developer tools ▼ 310

#1 in policy keyword 10 ▲ 2

#14 in security keyword 84

#61 in generator keyword 37 ▲ 1

#100 in automate keyword 48 ▲ 5

Upgrade to see more rankings

Other platforms

CSP Content Security Policy Generator (v1.9.0)

5.00

(4) 1,000

Not available on Firefox

Want to check extension ranking and stats more quickly for other Edge add-ons? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Edge Add-on Store.

Add-on summary

Analyze keywords

CSP Generator allows developers, IT teams, and security experts to easily generate a Content Security Policy (CSP) for a public, or internal site - mitigating against client-side attacks like XSS, Clickjacking, Formjacking, Data Exfiltration and more.

The extension runs with similar logic as the rapidsec.com CSP generator, and is built combining years of cumulative best practice with the Content-Security-Policy technology and how to most effectively block client-side attacks.

When deploying the generated policies - you must first use the CSP report-only mode, with a proper reporting endpoint (sign up at RapidSec.com).

This is a free tool to help you on your CSP journey, and RapidSec provides no guarantees or warranties for it.

If you are looking to automate the deployment of Content-Security-Policy (CSP), along with other important security controls (SameSite, Security headers), you can use RapidSec.com .

User reviews

Works great! Very good way to get a starting CSP for a site

by Shawn, 2023-09-29

View all user reviews

Add-on safety

Risk impact

CSP Content Security Policy Generator requires some sensitive permissions that could impact your browser and data security. Exercise caution before installing.

Risk likelihood

CSP Content Security Policy Generator has earned a fairly good reputation and likely can be trusted.

Upgrade to see risk analysis details

CSP Content Security Policy Generator marquee promo image — Marquee promo image