Tag feed

#content-security-policy

12 posts0 followers

Explore Hashnode

Alternatives

SKSreeram K Scode-as-a-story.hashnode.devJun 6 · 4 min read

What is CSP (Content Security Policy)?

Story Time Imagine you’re managing a high security office building, for example, Reserve Bank of India (RBI) Headquarters. Every day, different type of people try to enter this building including empl

0

MTMittal Technologiesmittal-tech.hashnode.devMay 22 · 3 min read

Modern Web Security Mistakes I Still See in Production Apps

Not the clever CTF-style vulnerabilities. The boring, preventable ones. The ones that ship because someone was under deadline pressure and planned to "fix it later." Here are the mistakes I keep findi

0

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.devMar 14 · 16 min read

CSP Bypass in DVWA

1 Introduction In this post, the Content Security Policy (CSP) Bypass vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for attacks on all levels is to bypass the

0

TITech Insights Hubtopperblog.hashnode.devFeb 13 · 6 min read

Content Security Policy: XSS Attack Prevention

Content Role: pillar Content Security Policy: XSS Attack Prevention CSP headers and nonce-based script execution for web applications Cross-Site Scripting (XSS) attacks remain one of the most prevalent web security vulnerabilities, accounting for app...

0

DMDeep Modakdeepwritestech.hashnode.devOct 27, 2025 · 5 min read

Boost Web Security with HTTP Headers in NGINX

Web Security and HTTP Security Headers Web security is an ever-evolving challenge. One effective way to protect your web applications from common attacks is by using HTTP Security Headers. These headers instruct browsers on how to handle your website...

0

SSSaurav Sharmablog.sorv.devJun 3, 2025 · 4 min read

Implementing Strict Content Security Policy ( CSP ) in Vue.js & Django with Nginx

Introduction Content Security Policy (CSP) is a security standard that helps prevent cross-site scripting (XSS), clickjacking, and other code-injection attacks by whitelisting trusted sources of content. When correctly configured, CSP ensures that on...

0

KNKaruppiah Natarajankaruppiah.devMay 4, 2025 · 4 min read

May 4th 2025: Today I Learned (TIL)

Today I noticed the Report-To response header and learned that it’s a header that the browser consumes / uses and sends reports. For example, I noticed this while I was trying to apply to many companies on https://www.instahyre.com/ automatically usi...

0

WWavePlaywaveplay.hashnode.devSep 17, 2024 · 3 min read

Patch Your Discord Activity’s Network Requests for Smooth CSP Compliance

When running a Discord Activity through Discord, you may encounter Content Security Policy (CSP) issues. You can fix these by making sure network requests follow Discord Proxy rules. This can be done manually... or you can let @robojs/patch handle it...

0

SBSumir Brootabreachforce.netJul 8, 2024 · 5 min read

Implementing a Secure Content Security Policy (CSP)

Skip to TLDR Introduction Content Security Policy (CSP) provides mechanisms for websites to restrict content that browsers will be allowed to load. It is the holy grail for client side web application security. A strong policy can provide monumental ...

0

KKKshitij Kakadekshitijkakade.hashnode.devApr 1, 2024 · 4 min read

Understanding and Mitigating XSS Attacks in Web Applications

Cross-site scripting (XSS) is a menacing threat to web application security, allowing attackers to inject malicious scripts into websites, potentially leading to data theft, session hijacking, and unauthorized activities. This blog post delves into t...

0

#content-security-policy

Search Hashnode

#content-security-policy

Explore Hashnode

What is CSP (Content Security Policy)?

Modern Web Security Mistakes I Still See in Production Apps

CSP Bypass in DVWA

Content Security Policy: XSS Attack Prevention

Boost Web Security with HTTP Headers in NGINX

Implementing Strict Content Security Policy ( CSP ) in Vue.js & Django with Nginx

May 4th 2025: Today I Learned (TIL)

Patch Your Discord Activity’s Network Requests for Smooth CSP Compliance

Implementing a Secure Content Security Policy (CSP)

Understanding and Mitigating XSS Attacks in Web Applications

Trending tags this week