Cspparse - A Tool To Evaluate Content Security Policies

2022-7-5 20:30:0 Author: www.kitploit.com(查看原文) 阅读量:12 收藏

cspparse is a tool to evaluate Content Security Policies. It uses Google's API to retrieve the CSP Headers and returns them in ReconJSON format. Not only does it check for headers with Google's API, it also parses the target site's HTML to look for any CSP rules that are specified in the <meta> tag

Installation

Install Command and Download Source With Go Get

cspparse command will be installed to $GOPATH/bin and the source code (from https://github.com/lc/cspparse) will be found in $GOPATH/src/github.com/lc/cspparse with:

~ ❯ go get -u github.com/lc/cspparse

Install from Source

~ ❯ git clone https://github.com/lc/cspparse
~ ❯ cd cspparse
~ ❯ go build

Usage

~ ❯ cspparse <domain / url>

Example

~ ❯ cspparse https://www.facebook.com

Docker

~ > docker build -t cspparse .

Run

~ > docker run --rm -t cspparse <domain / url>

Cspparse - A Tool To Evaluate Content Security Policies Cspparse - A Tool To Evaluate Content Security Policies Reviewed by Zion3R on 8:30 AM Rating: 5


文章来源: http://www.kitploit.com/2022/07/cspparse-tool-to-evaluate-content.html
如有侵权请联系:admin#unsafe.sh