2 comments

[ 4.2 ms ] story [ 25.4 ms ] thread
I'm happy someone finally did this. I would love it if this were a port of the built-in dev tools from chrome (since this doesn't work on all sites because of security policies). Great work.
Thank you! This method works even if CSP is set, since the VPN layer injects its own CSP rules into the initial GET response. From there, arbitrary scripts can be loaded on the site.