Security Headers Checker
Guide
Security Headers Checker
Paste HTTP response headers to instantly analyze your site’s security posture. Checks all critical security headers, assigns an overall grade from A+ to F, and provides actionable fix recommendations with server configuration examples.
How to Use
Paste your HTTP response headers (key: value format, one per line) into the input field. The tool analyzes eight critical security headers and displays a color-coded report with an overall security grade, per-header status, and fix recommendations.
Features
- 8 Security Headers Analyzed – CSP, HSTS, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy, COOP, and COEP
- Security Grading – Overall grade from A+ to F based on header presence and configuration quality
- CSP Validation – Syntax checking and directive analysis for Content-Security-Policy headers
- HSTS Preload Check – Verifies preload eligibility (includeSubDomains, max-age requirements)
- Fix Recommendations – Actionable suggestions with nginx, Apache, and Express configuration examples
- Color-Coded Results – Green for properly configured, yellow for warnings, red for missing or misconfigured
- Header Explanations – Clear descriptions of what each header does and why it matters
Install Our Extensions
Add IO tools to your favorite browser for instant access and faster searching
恵 Scoreboard Has Arrived!
Scoreboard is a fun way to keep track of your games, all data is stored in your browser. More features are coming soon!
Must-Try Tools
View All New Arrivals
View AllUpdate: Our latest tool was added on Mar 14, 2026
Get Involved
Help us continue providing valuable free tools
