Unit Description
Learn how Content Security Policy (CSP) helps defend against XSS attacks—and how it can be bypassed.
Objectives

Topics Covered

  • Purpose of introducing CSP
  • How to configure CSP policies
  • Identifying vulnerabilities caused by misconfigured CSP
  • Attack techniques for bypassing CSP

Recommended For

  • Those interested in web application security
  • Anyone looking to learn about XSS prevention and CSP configuration

Prerequisite Knowledge

  • Basic understanding of web development and HTTP headers
  • Basic knowledge of XSS attacks
Composition
Content Security Policy (CSP)
[WHA-C] Background: Content Security Policy
Quiz: Content-Security-Policy
CSP Bypass
[WHA-C] Exploit Tech: CSP Bypass
Quiz: CSP bypass
[Exercise] CSP Bypass
[WHA-C] Exercise: CSP Bypass
CSP Bypass
[Self-practice] CSP Bypass Advanced
CSP Bypass Advanced
Rating
10.0 (3)
0
All items must be completed before leaving a rating feedback.
Content Security Policy (CSP)
10.0
(3)
Tier 2 Medium
Retail Price
400 coins
When you subscribe
Free
Start Dreamhack
Unit Detail
2 hours 30 minutes read
3 courses
2 challenges
2 quizzes
0% Completed Total 0 completed
Lecture 0 /3
Wargame 0 /2
2
Quiz 0 /2
2
You can access locked objectives by upgrading your plan or purchasing the units separately.
Start Dreamhack