Test CSP

See if you can bypass the CSP rule(s) present on this page or not?



Content Security Policy or CSP is a technique to mitigate certain types of web attacks in the browser. Whether you are testing a web app or developing a website, temporarily disabling CSP rules may be needed. Use this website to see if CSP rules are allowed or blocked in your browser.

Test CSP rules in your browser

Click the below buttons to see if CSP rules are active or not in your browser. Currently, five rules are implemented here.


What is Test CSP?

Test CSP is a web app that tells you whether you can bypass the preset content security policy rules or not. Click on each button to see if the present CSP rule is functional or not. You can add plugins to your browser to disable these rules then press these buttons to see if the plugin or addon is working properly or not. Allowing CSP is sometimes needed for web development therefore, having a plugin or addon to temporarily disable them might be needed. This web application helps you to verify the functionality of these plugins or addons. When you load this page without any addons installed, you will see a red error message saying the CSP prevented the resources from loading. However, with a proper addon, all three tests should pass successfully and a green message should be shown.

What is CSP?

Content Security Policy (CSP) is a security measure designed to mitigate certain types of web attacks (i.e. cross-site scripting). To enable CSP, websites generally use a specific type of HTTP header in the webserver. Sometimes, there might be a need to temporarily disable these CSP rules (i.e. web development). This web application helps you to see if these rules are properly disabled or not (via a third-party plugin or addon).

How can I allow CSP in my browser?

Many addons/plugins allow you to disable CSP rules in your browser. Please head to Chrome, Firefox, or Opera add-on stores and search for the - Allow CSP - keyword. Choose a desired extension from the list, and then add it to your browser. Then click on one of the test buttons above. Repeat this procedure once the addon is disabled, and compare the results. Please note that try to keep the CSP third-party add-ons disabled all the time and only use them once you need them; because many websites may encounter errors or face problems if CSP rule(s) is disabled in your browser.

Related Blog Posts

  1. How You Can Enable Privacy Extensions and Content Blocking Filters for Firefox: Mozilla had rolled out its new privacy features for their desktop version. Some of the features include enhanced tracker protection, password manager, content blocking, and optional security extensions...
  2. Study Browser's Crypto Jacking Protection: One of the newest threats on the internet is Crypto Jacking. It actually refers to the websites which abuse computing resources of visitors in order to mine cryptocurrency...
Comments and feedback