Check website HTTP response headers - Security header diagnosis, cache policy analysis
HTTP response headers are metadata returned by the server when responding to HTTP requests, containing content type, cache policy, security settings, etc. Common headers include Content-Type, Cache-Control, X-Frame-Options, etc.
This tool uses the browser's fetch API to send a request to the target URL, then reads and displays the HTTP response headers returned by the server. All operations happen locally in your browser.
Due to browser CORS security policies, JavaScript can only read CORS-safelisted response headers. Custom headers need to be declared via Access-Control-Expose-Headers to be readable.
Headers affect SEO through: Cache-Control (caching speed), X-Robots-Tag (search engine crawling), Content-Encoding (page load speed), Location (redirect chains).
Check these security headers: Strict-Transport-Security (HSTS), X-Content-Type-Options, X-Frame-Options, Content-Security-Policy, Referrer-Policy. Missing headers may cause security vulnerabilities.
HTTP response headers are metadata returned by the server when responding to HTTP requests, containing content type, cache policy, security settings, etc. Common headers include Content-Type, Cache-Control, X-Frame-Options, etc.
This tool uses the browser's fetch API to send a request to the target URL, then reads and displays the HTTP response headers returned by the server. All operations happen locally in your browser.
Due to browser CORS security policies, JavaScript can only read CORS-safelisted response headers. Custom headers need to be declared via Access-Control-Expose-Headers to be readable.
Headers affect SEO through: Cache-Control (caching speed), X-Robots-Tag (search engine crawling), Content-Encoding (page load speed), Location (redirect chains).
Check these security headers: Strict-Transport-Security (HSTS), X-Content-Type-Options, X-Frame-Options, Content-Security-Policy, Referrer-Policy. Missing headers may cause security vulnerabilities.