NoScript Security Suite

Winner of the "PC World - World Class Award" and bundled with the Tor Browser, NoScript gives you the best available protection on the web. It allows JavaScript, Flash, and other executable content to run only from trusted domains of your choice (e.g. your banking site), thus mitigating remotely exploitable vulnerabilities, such as Spectre and Meltdown.

It protects your "trust boundaries" against cross-site scripting attacks (XSS), cross-zone DNS rebinding / CSRF attacks (router hacking), and Clickjacking attempts, thanks to its unique ClearClick technology.

Such a preemptive approach prevents exploitation of security vulnerabilities (known and unknown!) with no loss of functionality where you need it. Experts do agree: Firefox is really safer with NoScript ;-)


A Basic NoScript 10 Guide

Still confused by NoScript 10's new UI?
Check this user-contributed NoScript 10 primer.
and this NoScript 10 "Quantum" vs NoScript 5 "Classic" (or "Legacy") comparison.

You are finally in control, and can decide by yourself which sites you TRUST. Don't let any unknown or UNTRUSTED sites to execute scripts and use other potentially dangerous capabilities in your browser! You can globally configure permissions for all the websites (DEFAULT preset), those you trust (TRUSTED) and those which you don't trust (UNTRUSTED). Then you can CUSTOMize them further for each site, if you want. Both dark and light color schemes are supported!