15Ara
How to make Firefox ignore the X-XSS-Protection response header?
I have two questions:
How can I make Firefox ignore the
X-XSS-Protection
header? I have a website which sends anX-XSS-Protection: 1
header and I want my Firefox to ignore that header, because it destroys my reflected XSS tests. I know Chrome has a directive--disable-xss-auditor
to ignore it but I can't find anywhere how to do the same in Firefox.How to disable XSS protection from web browser itself (Firefox + Chrome). I'm now not saying about header from a server, but how to disable built into web browser protection against reflected XSS?