HTTP Header Security Checker

Under maintenance

Pricing

Pay per usage

Try for free

Go to Apify Store

HTTP Header Security Checker

Under maintenance

Try for free

Audit HTTP security headers for any website. Check HSTS, CSP, X-Frame-Options, Referrer-Policy, and more. Security grade A-F with fix recommendations.

Pricing

Pay per usage

Rating

0.0

(0)

Developer

Donny Nguyen

Maintained by Community

Actor stats

Bookmarked

Total users

Monthly active users

a day ago

Last modified

HTTP Security Header Checker - Audit Website Security Headers

Audit HTTP security headers on any website. Checks HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy, and more. Security grade A-F.

Key Features

Checks 9 critical security headers with weighted scoring
Security grade A-F with percentage score
Specific fix recommendations for each missing header
Warns about exposed Server and X-Powered-By headers
Bulk URL scanning

Cost

Typical runs cost less than $0.01 per URL (HEAD requests only).

Input Example

{
    "urls": ["https://google.com", "https://example.com"]
}

Output Example

{
    "url": "https://google.com",
    "grade": "B",
    "score": "75/100 (75%)",
    "presentHeaders": [{"header": "HSTS", "present": true, "value": "max-age=31536000"}],
    "missingHeaders": [{"header": "CSP", "recommendation": "Add Content-Security-Policy..."}]
}

Use Cases

Security audits: check your website's HTTP security posture
Compliance: verify security headers meet requirements
Pentesting: quick recon on target security configuration
DevOps: monitor security header deployment across environments

Built By

Donny Dev - Blockchain & automation developer

Security Headers Checker - Audit CSP, HSTS, XFO and more

scrappy_garden/security-headers-checker

Check common HTTP security headers for one or more URLs (Content-Security-Policy, Strict-Transport-Security, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy, COOP/COEP/CORP). Useful for quick security hardening audits.

Bikram Adhikari

Security Headers Checker

pillowy_travel/security-headers-checker

Analyze HTTP security headers of websites and generate a security score. Detect missing headers like CSP, HSTS, X-Frame-Options, and more. Perfect for web security audits, vulnerability checks, learning, and automated monitoring.

SAHIL KUMAR

Website Security & Vulnerability Audit

smart-digital/website-security-vulnerability-audit

Automated security and vulnerability audit for websites. Detects WordPress plugin vulnerabilities, checks for updates, analyzes SSL/TLS, security headers, and CMS security

My Smart Digital

5.0

HSTS Header Checker - Strict-Transport-Security audit

scrappy_garden/hsts-header-checker

Fetches URLs and validates the Strict-Transport-Security (HSTS) response header. Parses directives (max-age/includeSubDomains/preload), flags missing/invalid configuration, and checks common best practices. Outputs per-URL results plus SUMMARY and REPORT.

Bikram Adhikari

X-Frame-Options Header Checker - Prevent clickjacking

scrappy_garden/x-frame-options-header-checker

Fetches URLs and validates the X-Frame-Options response header (DENY/SAMEORIGIN). Flags missing/invalid/deprecated values and also detects CSP frame-ancestors. Outputs per-URL results plus SUMMARY and REPORT.

Bikram Adhikari

Referrer-Policy Header Checker

scrappy_garden/referrer-policy-header-checker

Fetches URLs and validates the Referrer-Policy response header. Flags missing or risky policies (e.g., unsafe-url) and optionally checks against an expected policy. Outputs per-URL results plus SUMMARY and REPORT.

Bikram Adhikari

Website Security Auditor

zyrox/website-security-auditor

A powerful security tool to scan websites for exposed API keys and XSS vulnerabilities.

HIDDEN GHOST

Kali Security Tools Actor

syntellect_ai/kali-security-tools-actor

The **Kali Security Tools Actor** Run penetration testing, vulnerability assessments, and security research directly in the cloud - 🛡️ 600+ Security Tools - 🤖 AI Integration - ☁️ Cloud-Native - 📊 Structured Output - 🎯 Multiple Scan Modes - 📈 Comprehensive Reporting - 🔒 Built-in Safeguards**

christopher athans crow

Kali Security Tools Actor ppe

syntellect_ai/kali-security-tools-actorv2

christopher athans crow

SecurityNexus-AI Enterprise Security Platform

lovable_postcard/securitynexus-ai-clean-1

AI-powered enterprise security automation. $30+ revenue per run, $0.50-2.25 per threat. Perfect for SOCs, security teams, threat hunting. Real-time intelligence, professional reports. $72B market opportunity.