Free Security Headers Checker

Review the response headers that help browsers enforce transport security, framing protections, content restrictions, MIME sniffing controls, and referrer privacy.

Run this check Run a full domain scan

Common use cases

Audit a new website before launch for missing browser security headers.
Confirm HSTS, CSP, X-Frame-Options, and related headers after a deploy.
Collect quick evidence for hardening tickets and security reviews.

Frequently asked questions

Which security headers are checked?

The checker reports common headers including HSTS, Content-Security-Policy, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, and related controls.

Does it make a GET request?

NerdTools tries a HEAD request first and falls back to GET when the server does not return enough information.

Explore more NerdTools

Free WHOIS Lookup

Free DNS Lookup Tool

Free SSL Certificate Checker

Free TLS Protocol Checker

Free SEO Check Tool

Free SPF Record Checker

Free DMARC Record Checker

Free DKIM Record Checker

Free CAA Record Checker

Free MX Record Checker

Free Blacklist Check

Free IP Info Lookup

Free IP Reputation Check

Free Online Ping Tool

Free Online Port Scanner