CSP Analyzer - Online Test & Improve Policy

CSP Analyzer – Test & Improve Policy

Paste a Content-Security-Policy header value or enter a URL to fetch it automatically. Identify weaknesses, get improvement suggestions, and generate a hardened policy.

CSP Directive / Policy

You can also drag & drop a .txt file or paste from clipboard.

Fetch from URL (optional)

Attempts to retrieve CSP via fetch. If blocked, paste the policy manually.

Frequently Asked Questions

Content Security Policy is an added layer of security that helps detect and mitigate certain types of attacks, including Cross-Site Scripting (XSS) and data injection attacks. It allows web developers to define approved sources of content for their site.

CSP misconfigurations can leave your site vulnerable while over-restriction can break functionality. Our analyzer inspects each directive, flags risky values (like 'unsafe-inline', *), and suggests hardened alternatives to balance security and compatibility.

We evaluate all standard fetch directives: default-src, script-src, style-src, img-src, connect-src, font-src, object-src, media-src, frame-src, worker-src, and others. Also checks for base-uri, form-action, etc.

High – Allows inline scripts/styles, eval, or wildcards that enable XSS. Medium – Uses loose schemes like http: or data:. Low – Mostly secure with minor improvements possible.

The optimizer removes 'unsafe-inline', 'unsafe-eval', replaces wildcard * with 'self', and upgrades http: to https:. It also suggests adding 'strict-dynamic' when nonces/hashes are present. Always test the generated policy before deploying.

Yes, enter a full URL and click Fetch. The tool tries to read the Content-Security-Policy response header. Due to browser CORS restrictions, this may not always succeed. In such cases paste the header value manually (you can copy it from DevTools → Network → Response Headers).

New

Permissions‑Policy Header Generator - Online Security Config

Configure browser feature permissions (camera, microphone, geolocation) and generate the Permissions‑Policy HTTP header.

Generator generator header Permissions‑Policy security

New

Reporting API Demo - Online See CSP & Deprecation Reports

Send a test CSP violation report and see the ReportingObserver in action. Understand how monitoring works.

Developer Tools CSP demo monitor Reporting API

PRNG Validator - Online Check Randomness Pattern

Paste a list of numbers to visually check uniformity, mean, and simple pattern analysis. Educational tool for statistics and RNG.

Developer Tools PRNG random statistics validator

New

Live Site Contrast Checker - Online Audit By URL

Enter a URL and fetch its text/background colors to perform a bulk contrast check. See warnings for WCAG violations.

Accessibility accessibility audit contrast URL

New

Connection Speed Estimator - Online Download Test

Quickly estimate your internet connection speed by downloading a small test file. See class and recommendations.

Info connection download speed test

New

Live Website Audit Checker - Online Quick SEO & Performance

Enter a URL and get a one‑page report of titles, description, headings, image alts, and broken links. All from browser.

Developer Tools audit checker performance SEO

New

PGP Message Viewer - Online Decode & Inspect

Paste an ASCII‑armored PGP message and view its packet structure. See the encrypted/plaintext blocks without decrypting.

Decoder message packet PGP viewer

Readability Analyzer - Online Flesch-Kincaid & SMOG Index

Paste text to compute reading ease and grade level using Flesch-Kincaid, SMOG, and ARI. Improve your writing clarity. All in browser.

Educational Flesch-Kincaid grade level readability text

New

Browser Speed Test - Online Measure Download/Upload

Measure your internet connection speed by downloading and uploading a small test file. Works from your browser.

Network download network speed test upload

Keyword Density Checker - Online SEO Text Analyzer

Analyze text for keyword frequency and density. Highlights over-optimized terms. Perfect for content writers and SEO editors. Entirely browser-based.

SEO keyword density optimization SEO text analysis

New

DMARC Record Generator - Online Email Policy Builder

Create a DMARC policy record with percentage, reporting addresses, and alignment mode. Validate and copy the final DNS TXT.

Network DMARC DNS email policy

New

Screen Orientation API Tester - Online Lock & Check

Check current screen orientation and test the lock API. Useful for mobile web apps. Demo with code.

API API mobile Screen Orientation test

New

Character Frequency Analyzer - Online Visual Heatmap of Text

Analyze letter/symbol frequency with an interactive bar chart and heatmap. Useful for breaking simple ciphers, linguistics, and SEO keyword analysis. Local processing.

Analyzer analyzer crypto frequency heatmap

New

Freezer Meal Audit – Online What's in Your Freezer Log

Track freezer contents with type, date frozen. See what's been in too long. Simple grid view. Data local.

Home & Kitchen freezer inventory meal

New

ARIA Live Region Tester - Online Screen Reader Update

Inject dynamic messages into ARIA live regions and monitor how they trigger screen reader announcements. Debug a11y.

Accessibility ARIA debug live region screen reader

New

Web Share API Tester - Online Demo & Code

Test the Web Share API by sharing text, links, and files directly from the browser. Check compatibility and see example code.

API API share test Web Share

New

Web Share Target Tester - Online Receive Shared Content

Simulate a PWA receiving shared text, links, and images. Test the Web Share Target API without a server.

Developer Tools PWA share test Web Share Target

New

Bidirectional Text Analyzer - Online RTL/LTR Detection

Paste text with mixed Arabic/Hebrew and English. See the Unicode bidi class of each character and ordering. i18n debugger.

Developer Tools bidi bidirectional RTL text

New

Sentence Counter - Online Count & Analyze

Paste text to accurately count sentences, average sentence length, and longest sentence. For editors and writers.

Productivity analysis count sentence text

New

Analytics Joke Generator - Online Fake Dashboard

Generate a random, completely fake analytics dashboard snippet. 'Bounce rate: 98% from Mars.' Geeky humor.

Entertainment analytics dashboard fake joke

New

Keyword Extractor - Online Rapid Text Analysis

Paste any article and get a list of the most relevant keywords using a simple TF‑IDF‑like model. Skip stop words. All local.

SEO extractor keywords SEO text

New

Font Loading Strategy Tester - Online FOIT vs FOUT

Compare font‑display values (block, swap, fallback, optional) on the fly. See how text renders during web font load. Choose the right strategy.

Developer Tools FOIT font‑display font loading FOUT

New

PDF Color vs Black & White Detector – Online Page Analysis

Upload a PDF and quickly see which pages contain color and which are pure black & white. Helps optimize printing.

Analyzer analyze color PDF

New

WPM Reading Speed Calculator - Online Time Estimate

Paste text to calculate the estimated reading time based on your WPM. Set speaking time too. Perfect for speeches.

Productivity estimate reading time WPM

New

RPG Dice Roll Analyzer – Online Probability of 4d6 Drop Lowest

Simulates 4d6 drop lowest many times and shows average stat array. Character creation helper.

Analyzer dice probability RPG

New

Offline Page Detector - Online See Cached Content

Check if the current page can be loaded offline by examining the service worker cache. Developer tool for PWAs.

Developer Tools cache detector offline service worker

Is It Down or Just Me - Online Website Uptime Checker

Check if a website is globally reachable or experiencing issues. Status code and latency displayed. Quick browser-side test.

Developer Tools checker status uptime website down

New

Text Readability Scorer - Online Flesch-Kincaid & ARI Calculator

Compute multiple readability scores (Flesch Reading Ease, Grade Level, ARI, SMOG). Paste any English text and see which grade level it's suitable for. Local.

Analyzer Flesch Kincaid readability scorer text

Page Speed Simulator - Online Estimate Load Metrics

Enter a URL and get a rough client-side performance simulation: request count, DOM size, and potential speed tips. No real Lighthouse.

Developer Tools Lighthouse page speed performance simulator

New

Barometric Pressure Analyzer - Online Live Weather Prediction

If your device has a barometer, read the pressure and see trend analysis for short-term weather prediction. Fully local sensor access.

Analyzer analyzer barometric pressure weather