CSP headers: Exercises and brainteasers

For every question in this document, give me a CSP header that will result in the wanted behavior or answer the question

Photo by Collin Armstrong on Unsplash

Question 1)

I want to create a CSP header with the following properties: By default, I want it to only accept any resource from the domain itself. I want scripts to be allowed from google.com and images as well.

--

--

--

No b*llshit Hacking tutorials with extreme value in short bursts

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Track LooksRare NFT Sales in Discord for Free #nocode #bots #nft

Multi-Module Micro-Service with Spring Boot (Part 1/4)

Hands typing on a laptop computer.

Straightforward & Simple: The beginning of a quest for knowledge

Retrieve an SSM parameter inside an AWS Lambda function the easy way

Blog: GSoC’21 at Red Hen Labs

How to Create Effective Requirements Documents

Top Python Libraries Every Developer Should Learn

How I bypassed our school internet system. Twice.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Thexssrat

Thexssrat

No b*llshit Hacking tutorials with extreme value in short bursts

More from Medium

TCAPT: DLL Hijacking

CSAW 2021 Finals CTF Crypto Challenge : iBad Write-up