Mozzarella

Home

Laboratory (Content Security Policy / CSP Toolkit)

Laboratory is an Firefox extension that helps you generate a proper Content Security Policy (CSP) header for your website. Simply start recording, browse your site, and enjoy the CSP header that it produces.

Want to learn about how Laboratory works and the best ways to use it? Please check out our video introduction by Securing DevOps.

Install
After recording, Laboratory generates a Content Security Policy that matches the resources your site uses. If your site has inline script, it creates a policy that will work but warns you that it's dangerous. With Laboratory, you can enforce custom Content Security Policies without having to change a single line of your web server's configuration!