Cookie Parser
Parse Set-Cookie headers and document.cookie strings into structured data. All processing is done in your browser for maximum security and privacy.
0
Total Cookies
0
Secure Cookies
0
HttpOnly Cookies
Parsed Cookies
| Name | Value | Domain | Path | Expires | Max-Age | Flags |
|---|
How to Use Cookie Parser
Choose Mode
Select Set-Cookie header mode for HTTP headers or document.cookie mode for browser cookie strings
Paste Data
Paste your Set-Cookie headers (one per line) or a document.cookie string into the input field
Inspect Results
View parsed cookies in a structured table with statistics on security flags
What are HTTP Cookies?
HTTP cookies are small pieces of data stored by the browser on behalf of websites. They are sent via the Set-Cookie HTTP response header and attached to subsequent requests via the Cookie header. Cookies are used for session management, personalization, and tracking. Security flags like HttpOnly, Secure, and SameSite help protect cookies from cross-site scripting (XSS) and cross-site request forgery (CSRF) attacks.
HttpOnly
Prevents client-side scripts from accessing the cookie, mitigating XSS attacks
Secure
Ensures the cookie is only sent over HTTPS connections
SameSite
Controls cross-site cookie sending: Strict, Lax, or None to prevent CSRF attacks
Frequently Asked Questions
The tool parses Set-Cookie HTTP headers and document.cookie JavaScript strings. Multiple cookies can be parsed at once.
Yes. HttpOnly, Secure, SameSite (Strict/Lax/None), Path, and Domain attributes are all displayed for each cookie.
Yes. In Set-Cookie mode, paste one header per line. In document.cookie mode, all cookies in the string are parsed.