Security Headers Evaluator
Parse and audit raw HTTP response headers for security configuration best practices.
100% client-side: your files never leave your browser
Security Headers Evaluator
Analyze and audit raw HTTP response headers to identify missing security policies (CSP, HSTS, Clickjacking protections, etc.) and calculate a security grade.