HTTP Header Checker
Inspect a URL’s response headers
Fetch a URL and show its HTTP status and response headers — server software, caching, security headers and redirects, all in one view.
How to read the results
- 1.Enter a URL. We make a single request and return the status code and every response header.
- 2.Look for security headers (Strict-Transport-Security, X-Content-Type-Options, Content-Security-Policy) and caching directives.
- 3.A 3xx status plus a Location header means the URL redirects elsewhere.
Why it matters
Response headers reveal how a site is configured — its server, caching and, crucially, whether it sets the security headers that protect visitors.
Frequently asked questions
Which security headers should a site set?
At minimum: HSTS, X-Content-Type-Options: nosniff, a Referrer-Policy, and ideally a Content-Security-Policy.

