iFrame Unlocker – Remove X-Frame-Options & CSP

5.0(

1 rating

)

Extension Developer Tools58 users

Item media 3 (screenshot) for iFrame Unlocker – Remove X-Frame-Options & CSP

Item media 2 (screenshot) for iFrame Unlocker – Remove X-Frame-Options & CSP

Overview

This extension demonstrates a 'declarativeNetRequest' ruleset that blocks all requests to the domain 'example.com' on all frames.

🛠️ What It Does: This extension removes restrictive HTTP response headers such as: - X-Frame-Options - Content-Security-Policy - X-Content-Type-Options These headers often prevent websites from being embedded inside <iframe> elements. By removing them, this extension allows you to embed otherwise blocked pages—useful for developers, researchers, or anyone building iframe-based tools. 🔒 Privacy Friendly: - No tracking - No data collection - No cookies - Everything works 100% locally in your browser 🔧 Permissions Used: declarativeNetRequest – To modify HTTP headers *host_permissions: :/// ** – So rules apply across all websites These permissions are used only for modifying response headers. No browsing data or user information is accessed or stored. ⚠️ Disclaimer: This extension is meant for educational and development use. It may not work on all websites, especially those using advanced security techniques like frame-busting JavaScript or sandboxing. Always ensure you comply with the terms of service of the sites you interact with.

5 out of 5
1 rating
Learn more about results and reviews.

Details

Version
1.0
Updated
July 16, 2025
Flag concern
Offered by
mdmahfujarrahman
Size
5.77KiB
Languages
English (United States)
Developer
Email
ahmedmahfuj28@gmail.com
Non-trader
This developer has not identified itself as a trader. For consumers in the European Union, please note that consumer rights do not apply to contracts between you and this developer.

Privacy

The developer has disclosed that it will not collect or use your data. To learn more, see the developer’s privacy policy.

This developer declares that your data is

Not being sold to third parties, outside of the approved use cases
Not being used or transferred for purposes that are unrelated to the item's core functionality
Not being used or transferred to determine creditworthiness or for lending purposes

Iframe Buddy

0.0

Allow all iframes by dropping X-Frame-Options and Content-Security-Policy HTTP headers. Handy test button. Works with MV3 in 2024+!

IE View WE MV3

0.0

Provides ability to open pages and links by other browsers based on pre-defined rules for ThinBridge.

YouTube Embed Opener

4.4

Convert YouTube links to embedded versions when clicked.

Framer - Make IFrames possible!

5.0

Drop X-Frame-Options and Content-Security-Policy HTTP response headers for special sites, allowing pages to be embedded as iframes.

User-Agent

4.5

User-Agent like never before! Set User-agent by domain, URL, wildcard, keyword, regex (or global). Keep Mobile page or desktop…

CSP Unblock

4.4

No more Content-Security-Policy limitations. This extension removes all CSP-related headers during website testing.

ignore-x-frame-options

4.3

ignore x-frame-options

Anti-CORS, anti-CSP

4.6

Enable cross origin requests blocked by CORS or CSP. Disable CORS and CSP in selected hostnames, preserve security of other websites

Allow X-Frame-Options

5.0

Easily remove X-Frame-Options from the response header.

Auto Iframes Remover

4.0

This extension will automatically remove all iframes on all websites when the page loads.

Pixefy - Responsive Design Checker

4.7

Preview and debug your website’s responsiveness across multiple devices in real-time, all inside one browser tab.

Mini Browser Extension

5.0

A little project that allows you to open the website you are on into a little popup after pressing the icon!!