ismycodesafe.com
← All tools

Cookie Security Analyzer

Inspect cookie security flags: Secure, HttpOnly, SameSite. Find session cookies vulnerable to XSS theft and CSRF attacks.

About Cookie Security

Cookies without the Secure, HttpOnly, and SameSite flags expose sessions to XSS token theft, network interception, and CSRF attacks. Every session cookie should have all three flags set.

Need the full picture?

Run a complete security audit with 150+ checks, OWASP Top 10, and CVE lookup.

Run Full Scan