Free Scan
Check all essential security headers
Instant Results
Get results in seconds
Detailed Reports
In-depth security analysis
About Security Header Checker
What is a Security Header Check?
A security header check analyzes the HTTP response headers of your website that are crucial for security. These headers help protect against various web vulnerabilities and attacks like XSS, clickjacking, and information disclosure.
How Does Our Header Checker Work?
This tool performs a real-time analysis of your website's security headers. Simply enter your domain name, and we'll check for all essential security headers, providing detailed information about both present and missing headers.
Want to Run This Tool Yourself?
You can run this security header checker tool locally on your own machine using the open-source project humble. This website uses this tool in the backend.
Visit the GitHub repository, created by Rafa 'Bluesman' Faura:
https://github.com/rfc-st/humbleThis tool allows you to perform security header checks from your own environment, making it perfect for automation and integration into your security testing workflows. The developer behind this project is very active and responsive to issues and feature requests.
Common Use Cases
- Verify your website's security configuration
- Audit security headers after server changes
- Compare security headers across different environments
- Ensure compliance with security best practices
- Troubleshoot security-related issues
Supported Security Headers
This website checks for all crucial security headers including:
- Cache-Control
- Clear-Site-Data
- Content-Type
- Content-Security-Policy
- Cross-Origin-Embedder-Policy
- Cross-Origin-Opener-Policy
- Cross-Origin-Resource-Policy
- NEL
- Permissions-Policy
- Referrer-Policy
- Strict-Transport-Security
- X-Content-Type-Options
- X-Frame-Options
- X-Permitted-Cross-Domain-Policies