An http applicaton that collects reports generated from browsers for Content Security Policy violations.
Copy theconfig.example.json file to csp-report-collector.json and fill in datasource. The datasource must be a mysql database with a csp_reports table.
# download the prebuilt executable
wget https://github.com/ClearC2/csp-report-collector/releases/download/<release-tag>/csp-report-collector.linux-amd64
# or clone the repo and build yourself
GOOS=linux GOARCH=amd64 go build -o csp-report-collector.linux-amd64 csp-report-collector.go
# deploy
scp ./csp-report-collector.linux-amd64 user@server:/srv/csp-report-collector/
scp ./csp-report-collector.json user@server:/srv/csp-report-collector/csp-report-collector.jsonCreate a service file on the target server to run the application:
# /etc/systemd/system/csp-report-collector.service
[Unit]
Description=Go CSP report collector
After=network-online.target
[Service]
User=root
Restart=on-failure
ExecStart=/srv/csp-report-collector/csp-report-collector.linux-amd64 /srv/csp-report-collector/csp-report-collector.json
[Install]
WantedBy=multi-user.targetEnable and start the service:
systemctl enable csp-report-collector.service
service csp-report-collector startThe csp-report-collector will be running on port 3010.
Create a local config file first.
# run locally
go run csp-report-collector.go ./csp-report-collector.json