HTTP Headers Explainer
Paste raw HTTP response headers to get plain-English explanations, security ratings, and recommendations.
Why HTTP Headers Matter
HTTP response headers control how browsers, CDNs, and intermediaries handle your content. Security headers like Strict-Transport-Security, Content-Security-Policy, and X-Frame-Options protect users from common attacks. Caching headers determine performance. Content-type headers prevent MIME sniffing attacks.
The security score shown here is based on the presence and correctness of key security headers recommended by OWASP and Mozilla's Observatory. A score of 100 means all major security headers are present with good configurations. Missing headers won't necessarily mean your site is compromised, but each adds a layer of protection.