Home page logo


NoScript is an add-on for Firefox that blocks JavaScript, Java, Flash, and other plugin content (allowing you to selectively re-enable them for certain sites). It also offers cross-site scripting protection. This is mainly designed to keep web users safe, but security testers can also use the add-on to see what scripts a site is using. One caution is that the NoScript author Giorgio Maone has been caught inserting hidden code into NoScript which disabled users' ad-blocking software so that ads would still show up on the NoScript web site. He did post a lengthy apology. For downloads and more information, visit the NoScript homepage.

Popularity #85, new!
Rating ★★★★★ (2)
Latest release
Aug. 20, 2015
(5 years, 8 months ago)


★★★★★ r33per

Some idiot forgot to put in my rating... 5 stars!!

no rating r33per newer comment by this user ↑

A superb tool that has kept my laptop safe in the presence of web scripts. Especially useful for blocking out the dozens of ad links on a site.

★★★★★ miniBill

Absolutely essential. Blocks XSS, CSRF, ClickJacking and more. Even with scripts enabled by default (needed for non-tech people) it does a wonderful security job.

Your comment

Along with your rating, you can use the comment form to post a review, tutorial, tips and tricks, or anything else others will find useful. If you develop this software (or work for the company), please don't rate it. You may leave a clarifying comment as long as you state your affiliation and don't specify a star rating (just leave it as “No rating”).

  (will not be shown, will not be spammed)
(At least 50 characters. No markup is allowed. URLs will be made into links.)
 Which does not belong: buffer overflow, format string, sql injection, flux capacitor, cross-site scripting (antispam)

Feed for updates.


[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]