Cookie Scanner
LegalBanner's automated scanner discovers all cookies, trackers, and storage mechanisms used by your website.
How It Works
The scanner uses a headless browser to visit your website and detect:
- HTTP cookies — Set via response headers
- JavaScript cookies — Set via
document.cookie - LocalStorage / SessionStorage — Browser storage writes
- Third-party requests — Network calls to external domains
- Tracking scripts — Pixels, beacons, and script tags
Scan Types
Scheduled Scans — Run automatically once per week. LegalBanner reads your sitemap.xml, follows internal links, and scans pages up to the configured depth. On-Demand Scans — Manually trigger a scan whenever you want. Useful after deploying new features or adding third-party tools.Scan Limits by Plan
| | Free | Starter | Pro | |---|---|---|---| | Weekly scan URLs | 50 | 500 | 5,000 | | On-demand scans/month | 1 | 10 | 100 |
Scan Results
After a scan completes, you'll see:
- Pages crawled — How many URLs were analyzed
- Cookies found — Total distinct cookies detected
- Trackers found — Third-party tracking scripts
- New findings — Items detected for the first time
- Changed findings — Items that changed since the last scan
Auto-Categorization
The scanner automatically suggests categories for detected cookies based on:
- Known vendor patterns (e.g.
_ga→ Analytics,fbp→ Marketing) - Domain classification (e.g.
google-analytics.com→ Analytics) - Script signatures
Configuration
- Crawl Depth — How many levels of internal links to follow
- Include Subdomains — Whether to scan subdomains
- URL Allowlist — Specific URLs to always include
- URL Blocklist — URLs to skip (login pages, admin panels)