Run a free advanced security header audit on any website you own. The checker inspects response headers, including HTTPS and HSTS strength, Content-Security-Policy and its directives, clickjacking protection, CORS, cookie Secure, HttpOnly and SameSite flags, and cross-origin policies.
Transport security, response headers, content policy, cookies, and information disclosure, grouped into a clear report with a score.
It is a read-only review of public response headers, not a vulnerability scan. Only test sites you own or are authorized to test.