GitHub - GoSecure/csp-auditor: Burp and ZAP plugin to analyse Content- Security-Policy headers or generate template CSP configuration from crawling a Website
Mitigate cross-site scripting (XSS) with a strict Content Security Policy ( CSP)
Using Content Security Policy (CSP) to Secure Web Applications | Invicti