free security tools
← Back to tools

Cookie Analyzer

Parse raw Set-Cookie headers or Cookie strings. Inspect security flags, expiration, domain/path scope, and get a risk assessment for each cookie.

Results

What is Cookie Analyzer?

Analyze browser cookies for security flags: Secure, HttpOnly, SameSite. Identify session cookies missing critical protections.

Security Guide

Secure flag
Add Secure to all cookies → Web Auditor
HttpOnly flag
Enable HttpOnly on all session cookies → CSP Evaluator
SameSite policy
Set SameSite=Lax minimum; Strict for sensitive sessions
Cookie expiry
Use short expiry or session-only cookies to limit exposure
Session rotation
Regenerate session IDs after login to prevent fixation