Content-Secure-Policy

HTTP response header

Header usage statistics

Content-Secure-Policy response header information and usage statistics.

Websites using header Content-Secure-Policy 3,677
Percentage of websites that use Content-Secure-Policy header <0.1%
Total discovered header values 175
Header uses directives No
Header values are unique or random No
Most popular in the country United States of America

Distribution by websites popularity

Content-Secure-Policy detection in the top websites by popularity

Top 10k sites 0 websites
Top 100k sites 6 websites
Top 1m sites 120 websites

Websites utilizing Content-Secure-Policy

List of websites that use Content-Secure-Policy header

Domain Country Rank Contacts
farsi.khamenei.ir Iran, Islamic Republic of 28,962
www.tim.it Italy 31,513
www.ctt.pt Portugal 35,635
www.sana.de Germany 42,682
ethanmarcotte.com United States of America 78,937
www.robi.com.bd Bangladesh 86,601
See full domain list
Flat price per the report, subscription is not required.

Geographical Distribution

Header usage distribution by websites across the globe.






Common header values

List of top common Content-Secure-Policy header values

Header value Value prevalence
default-src 'self'; 59.61%
frame-ancestors 'none'; 12.59%
default-src https: 'unsafe-inline' 'unsafe-eval'; 4.65%
default-src 'none'; script-src 'self' www.google-analytics.com ajax.googleapis.com; img-src *; style-src 'self'; 3.02%
default-src 'self'; script-src *; img-src *; style-src *; 2.99%
default-src 'self'; img-src * 1.60%
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://ssl.google-analytics.com https://assets.zendesk.com https://connect.facebook.net https://code.jquery.com https://maxcdn.bootstrapcdn.com; img-src 'self' https://ssl.google-analyti 1.50%
default-src 'none'; script-src 'self' fonts.googleapis.com ; img-src *; style-src 'self'; 1.17%
frame-ancestors 'self'; 1.09%
default-src 'self'; script-src 'self' www.google-analytics.com ajax.googleapis.com c.imedia.cz www.google.com *.gstatic.com *.sharethis.com *.facebook.net *.facebook.com *.doubleclick.com *.googleadservices.com; img-src *; style-src *; 0.90%
default-src 'none'; script-src 'self' www.google-analytics.com *.googleapis.com www.googletagmanager.com s.ytimg.com www.youtube.com *.googleusercontent.com; img-src *; style-src 'self'; 0.46%
default-src self; 0.46%
frame-ancestors 'self' *.googletagmanager.com 0.46%
default-src 'self' 0.35%
default-src 'none'; script-src 'self'; img-src *; style-src 'self'; 0.30%
default-src 'none'; script-src 'self'; connect-src 'self'; img-src 'self'; style-src 'self';base-uri 'self';form-action 'self' 0.30%
default-src 'self'; img-src 'self'; style-src 'self' 'unsafe-inline'; font-src 'self'; script-src 'self' 'unsafe-inline'; connect-src 'self'; 0.27%
frame-ancestors 'self' www.tru.ca ; 0.27%
default-src 'self'; frame-ancestors 'none'; img-src *; media-src *; 0.24%
default-src 'self' *.doacoes.org.br *.exercitodoacoes.org.br *lutamoscontraafome.com.br *lutamoscontraafome.org.br; 0.24%