HTTP Headers Inspector - Full Headers + Security Analysis avatar

HTTP Headers Inspector - Full Headers + Security Analysis

Pricing

$20.00 / 1,000 url checkeds

Go to Apify Store
HTTP Headers Inspector - Full Headers + Security Analysis

HTTP Headers Inspector - Full Headers + Security Analysis

Inspect full HTTP response headers of any URL. Input: urls array. Output: JSON per URL with every response header, security analysis (HSTS, CSP, X-Frame-Options, etc.), and server fingerprint. Priced per URL checked - predictable pay-per-result, no subscription.

Pricing

$20.00 / 1,000 url checkeds

Rating

0.0

(0)

Developer

Anthony Snider

Anthony Snider

Maintained by Community

Actor stats

0

Bookmarked

2

Total users

1

Monthly active users

a day ago

Last modified

Share

HTTP Headers Inspector

Inspect the full HTTP response headers of any URL — every header, a security analysis (HSTS, CSP, X-Frame-Options, and more), and a server fingerprint.

Live on the Apify Store — run it instantly or call it as an agent tool via Apify MCP.

What you get

  • Every response header captured into a clean JSON object.
  • Security grade (A–F) based on which hardening headers are present vs. missing: HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy.
  • Server fingerprintServer, X-Powered-By, Via.
  • Status, redirect detection, and response timing (ms).
  • Single or bulk — pass one url or many urls, capped by maxUrls.

Input

{
"url": "https://github.com",
"urls": ["https://example.com"],
"method": "GET",
"maxUrls": 25
}

Output

{
"url": "https://github.com",
"finalUrl": "https://github.com/",
"redirected": false,
"status": 200,
"method": "GET",
"timingMs": 412,
"headers": {
"content-type": "text/html; charset=utf-8",
"strict-transport-security": "max-age=31536000; includeSubdomains; preload",
"content-security-policy": "default-src 'none'; ...",
"x-frame-options": "deny",
"x-content-type-options": "nosniff"
},
"security": {
"present": ["strict-transport-security", "content-security-policy", "x-frame-options", "x-content-type-options", "referrer-policy"],
"missing": ["permissions-policy"],
"grade": "B"
},
"server": {
"server": "GitHub.com",
"poweredBy": null,
"via": null
}
}