Framekiller
Framekiller
Technique used by websites to prevent loading in frames
A framekiller (or framebuster or framebreaker) is a technique used by websites and web applications to prevent their web pages from being displayed within a frame. A frame is a subdivision of a Web browser window and can act like a smaller window. A framekiller is usually used to prevent a website from being loaded from within a frameset without permission or as an attack, as with clickjacking.
Framekiller scripts have largely been replaced by the usage of X-Frame-Options
and Content-Security-Policy
headers, which prevent the page from being loaded in a frame in the first place. These headers are supported by all modern browsers and do not require the use of JavaScript.[1] These headers are also intended to be specified inside the web server software, rather than directly inside the HTML.