Stripe
Stripe offers online payment processing for internet businesses as well as fraud prevention, invoicing and subscription management.
About
Stripe offers online payment processing for internet businesses as well as fraud prevention, invoicing and subscription management.
Categories: Payment processors
Quick facts
Detection methodology for Payment processors
Payment SDKs identify themselves through their script src URL (`js.stripe.com/v3/`, `www.paypal.com/sdk/js`, `cdn.adyen.com/`) and runtime globals (`Stripe`, `paypal`, `AdyenCheckout`). We surface the exact SDK version via the sourcemap when shipped — Stripe Elements 14.x vs 5.x, PayPal Checkout v5 vs v6 — which matters for security and compliance work much more than the categorical 'they use Stripe' answer.
How we detect Stripe
Each signal alone is rarely conclusive — Sourcemap Explorer cross-references all of them and weights by confidence. You can reproduce any of these checks yourself in Chrome DevTools.
Cookies set by the platform. Visible in DevTools → Application → Cookies.
__stripe_mid
__stripe_sid
Window-level global the technology installs on page. Reproducible by typing the path into the DevTools console.
window.Stripe.version = ^(.+)$
window.__NEXT_DATA__.props.pageProps.appSettings.STRIPE_API_PUBLIC_KEY
window.checkout.enabledpayments.stripe = ^true$
window.stripePublicKey
Substring or regex match against the page HTML — typically a unique class, comment marker, or asset path.
<input[^>]+data-stripe
Script URL pattern. Typically a CDN host or chunk path that ships with the technology.
js\.stripe\.com
A DOM selector that only this technology's pages render. Verified at runtime by the content script.
a[href*='billing.stripe.com']
a[href*='checkout.stripe.com']
input[data-stripe]
FAQ
How do I check if a website is using Stripe?
Open the page in Chrome, click the Sourcemap Explorer toolbar icon, and read the Stack tab. The popup matches Stripe's fingerprint signals (response headers, asset URL prefixes, runtime globals, sourcemap paths) and flags it whenever any combination is found. The same checks can be reproduced manually in DevTools — see the "How we detect" section above.
What Stripe version can Sourcemap Explorer detect?
Stripe ships as a hosted payment processors rather than a bundled npm package, so version-specific detection isn't always possible. Where the platform leaks a version in response headers (`X-Powered-By`, `Server`, generator meta tags) we surface it; otherwise we report presence only.
Is Stripe a SaaS or self-hosted?
Stripe is offered as a hosted SaaS product. Detection runs against the JavaScript SDK or asset-URL fingerprints the platform ships into pages.
How much does Stripe cost?
Stripe's pricing model is documented as: payg. Detection is independent of the pricing tier — Sourcemap Explorer flags the technology by its fingerprints, regardless of which paid plan a site is on. See the official site for the current pricing page.
Where can I read more about Stripe?
Official site: https://stripe.com. For Sourcemap Explorer's detection guide, see the deep-dive link below or the related guides in the cross-link section.
Keep reading on Sourcemap Explorer
Practical guides
Alternative tools
Detected by Sourcemap Explorer
Open the popup on any page running Stripeand you'll see the exact version pulled from the bundled package.json when sourcemaps are exposed.