HTTP Headers Analyzer

HTTP headers provide important metadata about web responses. Security headers in particular help protect your site from common attacks like XSS, clickjacking, and MIME sniffing.

Important Security Headers

• Content-Security-Policy - Prevents XSS attacks by controlling resource loading
• Strict-Transport-Security - Forces HTTPS connections for better security
• X-Content-Type-Options - Prevents MIME type sniffing attacks
• X-Frame-Options - Protects against clickjacking attacks
• X-XSS-Protection - Legacy XSS protection (use CSP instead)
• Referrer-Policy - Controls how much referrer information is sent with requests, protecting user privacy
• Permissions-Policy - Restricts access to browser features like camera, microphone, and geolocation