Bug Bounty Hub
  • πŸš€WELCOME
    • Bug Bounty Hub
    • BBH - Values
    • About the author
  • πŸ•ΈοΈPENTESTING WEB
    • Information Gathering
      • Enumerating ASN and IP blocks
      • Reverse IP Lookup
      • Scanning Open Ports/Services
      • Subdomain Enumeration
        • Active Subdomain Enumeration
        • Passive Subdomain Enumeration
        • Subdomain Permutations
        • Check Alive Subdomains
      • Subdomain Takeover
      • Fuzzing
      • JavaScript Files
      • Endpoints
      • Input Parameters
      • Mapping Attack Surface - Crawling/Spider
      • Fingerprinting
      • Potential Vulnerabilities - Nuclei
    • Client-Side Injection Attacks
    • Server-Side Vulnerabilities
      • Path Traversal/File Inclusion
      • Access Control
      • Authentication
      • Server-side Request Forgery (SSRF)
      • File upload vulnerabilities
      • OS Command Injection
      • SQL Injection
        • MySQL Injection
        • SQLi with SQLMap
    • Authentication
    • Insecure Direct Object Reference (IDOR)
    • Cross-Site Request Forgery Attacks
    • Business Logic Flaws
    • HTTP Verb Tampering
    • Bypass 401 & 403
    • Evading WAFs
    • Reporting
  • 🐣THE BASICS OF WEB
    • HTTP Methods
    • HTTP Response Codes
    • HTTP Headers
      • AWS S3 Buckets Headers
    • HTTP Cookies
    • Encoding
      • URL encoding
      • HTML encoding
      • Base 64 encoding
      • Unicode encoding
    • Web Browsers
      • Same-Origin Policy (SOP)
      • Content Security Policy (CSP)
      • Subresource Integrity Check (SIC)
    • Web Proxies
  • πŸ“šRESOURCES
    • Books
    • Web resources
    • CTF Platforms
  • πŸ”οΈBug Bounty Platforms
Powered by GitBook
On this page
  • Key CSP Directives
  • Example

Was this helpful?

  1. THE BASICS OF WEB
  2. Web Browsers

Content Security Policy (CSP)

Content Security Policy (CSP) is a security feature used by web developers to mitigate the risk of various types of attacks, such as Cross-Site Scripting (XSS), clickjacking, and other code injection attacks that result from the execution of malicious content in the browser.

CSP works by allowing site administrators to specify which sources of content are trusted, thereby preventing the browser from loading or executing any resources that are not explicitly allowed.

Key CSP Directives

To define which content can be loaded and executed, CSP uses various directives that provide fine-grained control over different types of resources. Each directive controls a specific type of content, allowing developers to enforce security at multiple levels. Here are the most common directives used in CSP:

  • default-src: Specifies the default policy for fetching resources like scripts, styles, and images when no specific policy is set.

  • script-src: Restricts the sources from which JavaScript can be loaded and executed.

  • img-src: Limits where images can be loaded from.

  • style-src: Controls where CSS files can be loaded from.

  • object-src: Specifies allowed sources for <object>, <embed>, and <applet> elements.

  • frame-ancestors: Specifies who is allowed to embed the site in a frame (helpful for preventing clickjacking).

  • report-uri: Specifies a URL where the browser sends reports if a policy violation occurs, allowing the site administrator to track and fix issues.

Example

This policy would ensure that only JavaScript from the specified jQuery library is executed, blocking any other scripts that are not from this source:

Content-Security-Policy:script-src http://code.jquery.com/jquery-1.11.0.min.js;
PreviousSame-Origin Policy (SOP)NextSubresource Integrity Check (SIC)

Last updated 6 months ago

Was this helpful?

🐣