Cookie Scanner API — GDPR & Security Audit for Any URL avatar

Cookie Scanner API — GDPR & Security Audit for Any URL

Pricing

$20.00 / 1,000 page scanneds

Go to Apify Store
Cookie Scanner API — GDPR & Security Audit for Any URL

Cookie Scanner API — GDPR & Security Audit for Any URL

Website cookie scanner API. Input: startUrls. Output: JSON per page listing each Set-Cookie cookie with name, domain, expiry, Secure, HttpOnly, SameSite flags, third-party tracker status, and GDPR/security issue flags. Pay-per-result: $0.02 per page scanned.

Pricing

$20.00 / 1,000 page scanneds

Rating

0.0

(0)

Developer

Anthony Snider

Anthony Snider

Maintained by Community

Actor stats

0

Bookmarked

2

Total users

1

Monthly active users

14 hours ago

Last modified

Share

Webpage Cookie Scanner (GDPR)

See exactly which cookies a page sets — and whether each one is GDPR/ePrivacy compliant.

Live on the Apify Store — run it instantly, or call it as an agent tool via Apify MCP.

What you get

For any URL, the scanner reads every Set-Cookie response header the page sends and audits each cookie:

  • Security attributesSecure, HttpOnly, SameSite (flags anything missing).
  • Lifetime — session vs persistent, plus days-until-expiry (flags cookies living over a year).
  • Third-party detection — cookies whose Domain doesn't match the page host.
  • Category guessanalytics, ads, functional, or unknown from known cookie-name patterns.
  • Issues list — plain-English GDPR/security findings (missing flags, trackers set before consent, SameSite=None without Secure, etc.).

Input

{
"url": "https://github.com",
"maxUrls": 50
}

Use urls (array) instead of url to scan many pages in one run.

Output

{
"url": "https://github.com",
"finalUrl": "https://github.com/",
"statusCode": 200,
"cookieCount": 2,
"sessionCount": 1,
"persistentCount": 1,
"thirdPartyCount": 0,
"trackerCount": 0,
"cookies": [
{
"name": "_octo",
"domain": "github.com",
"path": "/",
"secure": true,
"httpOnly": false,
"sameSite": "Lax",
"expiresDays": 365,
"session": false,
"thirdParty": false,
"category": "unknown"
}
],
"issues": [
"_octo: missing HttpOnly flag"
]
}