🔍 HTTP Header Analyzer

Analyze HTTP security headers for misconfigurations and vulnerabilities

Security Header Analysis

Enter a URL to analyze its HTTP security headers and identify potential security issues.

Must be a valid HTTP/HTTPS URL

Security Headers We Check

🛡️ Content Security

  • Content-Security-Policy
  • X-Content-Type-Options
  • X-Frame-Options
  • Referrer-Policy

🔐 Transport Security

  • Strict-Transport-Security
  • Public-Key-Pins
  • Expect-CT
  • Certificate Transparency

🚫 Attack Prevention

  • X-XSS-Protection
  • X-DNS-Prefetch-Control
  • Feature-Policy
  • Permissions-Policy

📊 Security Score

  • Overall security rating
  • Missing header detection
  • Configuration warnings
  • Best practice recommendations

⚠️ Legal Notice

Only analyze websites you own or have explicit permission to test. This tool makes HTTP requests and may be logged by target servers. Use responsibly and in compliance with applicable laws.