100% Free • Instant Checks

Security Headers Checker
Scan HTTP Response Headers

Audit common security headers like HSTS, CSP, X-Frame-Options, and more. Quickly find gaps and improve your website’s security posture.Works for any public URL or domain.

Check Headers See Features

Instant Scan

Header Score

Actionable Gaps

Free Forever

Check Security Headers

We fetch the URL server-side and scan for common security headers.

Powerful Features

Everything you need to scan and understand security headers

Common Headers Check

Scans for CSP, HSTS, X-Frame-Options, and more.

Instant Results

See your header score and missing headers instantly.

Security Insights

Understand why each header matters and what it protects.

Ship Secure by Default

Use Server Compass to deploy with security best practices baked in.

Try Server Compass