Alternatives and similar repositories for strict-csp-for-everyone

Users that are interested in strict-csp-for-everyone are comparing it to the libraries listed below

• w3c / webappsec-fetch-metadata
  Fetch Metadata
  ☆75Updated 9 months ago
• mikewest / scheming-cookies
  Cookies should take scheme into account, just like every other storage mechanism on the web.
  ☆16Updated 5 years ago
• WICG / signature-based-sri
  Signature-based Resource Loading Restrictions
  ☆44Updated 5 months ago
• w3c / webappsec-csp
  WebAppSec Content Security Policy
  ☆221Updated 2 months ago
• google / safe-html-types
  Security contract types
  ☆60Updated 3 years ago
• mikewest / deprecating-document-domain
  `document.domain` intentionally weakens the only security boundary we have. Perhaps we can dump it?
  ☆17Updated 2 years ago
• leakuidatorplusteam / artifacts
  The Paper Artifact Availability
  ☆21Updated 3 years ago
• danielfett / tlsprofiler
  Compares the TLS configuration of a web server to the Mozilla TLS Profiles
  ☆26Updated 2 years ago
• RUB-NDS / PrOfESSOS
  PrOfESSOS is our open source implementation for fully automated Evaluation-as-a-Service for SSO. PrOfESSOS introduces a generic approach …
  ☆29Updated 3 years ago
• sbingler / schemeful-same-site
  Explainer for Schemeful Same-Site
  ☆15Updated 5 years ago
• shapesecurity / salvation
  Parse Content Security Policy headers, warn about policy errors, safely manipulate, render, and optimise policies
  ☆72Updated 2 months ago
• kindredgroup / paf-credentials-checker
  PCC's aim is to provide a high performing offline tool to easily assess which users are vulnerable to Password Reuse Attacks (a.k.a. Pass…
  ☆18Updated 6 years ago
• sophieschmieg / exploits
  ☆16Updated 5 years ago
• tomnomnom / symwatch
  A tool to run a command when the target of a symlink changes
  ☆16Updated 9 years ago
• Tripwire / padcheck
  TLS CBC Padding Oracle Checker
  ☆52Updated 3 years ago
• crtsh / crl_monitor
  Certificate Revocation List monitor
  ☆47Updated last year
• SSLMate / caatestsuite
  Test suite which checks compliance with CAA checking as defined in version 1.4.8 of the CABF Baseline Requirements
  ☆10Updated last year
• w3c / webauthn-pay
  Joint task force of Web Authentication WG and Web Payments WG
  ☆15Updated 2 years ago
• mozilla-services / websec-check
  DEPRECATED - web security checklist for Firefox Services
  ☆78Updated 5 years ago
• mandatoryprogrammer / PaperChaser
  ☆46Updated 4 years ago
• crtsh / go-certlint
  Go wrapper for awslabs/certlint
  ☆25Updated 5 years ago
• LinkedInAttic / jaqen
  Jaqen - Simple DNS rebinding
  ☆75Updated 7 years ago
• disclose / dnssecuritytxt
  A standard allowing organizations to nominate security contact points and policies via DNS TXT records.
  ☆33Updated 7 months ago
• 4ARMED / dopwn
  Tool to automate takeover of DigitalOcean Kubernetes cluster. Check out the blog post for more info.
  ☆17Updated 7 years ago
• w3c / webappsec-post-spectre-webdev
  Post-Spectre Web Development
  ☆18Updated 2 years ago
• w3c / websec
  Web security drafts
  ☆32Updated 6 years ago
• annevk / orb
  Opaque Response Blocking (CORB++)
  ☆36Updated 3 years ago
• fabric8-analytics / cvedb
  CVE database
  ☆21Updated 5 years ago
• mozilla / infosec.mozilla.org
  Guidelines, principles published on https://infosec.mozilla.org
  ☆100Updated 6 months ago
• mozilla / tls-canary
  DEPRECATED - TLS regression scanner for Firefox
  ☆19Updated 3 years ago