Burp Suite User Forum

Login to post


Rajeshkumar | Last updated: Mar 25, 2021 08:19PM UTC

Can you tell me the steps how to test "Missing / insecure Content Security Policy" header via burpbounty? I have installed the free version of Burpbounty in my Burp professional. but I did not get any clue how to add the profile to burpbounty for CSP.

Hannah, PortSwigger Agent | Last updated: Mar 26, 2021 09:56AM UTC


"Burp Bounty, Scan Check Builder" is a BApp Store Extension that allows you to easily add additional scan checks to your installation.

Please note that extensions are written by third-party users of Burp, and PortSwigger makes no warranty about their quality or usefulness for any particular purpose.

Have you had a look at the GitHub source of the extension for further documentation? There's a link in the BApp Store or you can find it here

You need to Log in to post a reply. Or register here, for free.