HTTP Headers
Free HTTP Header Checker
Inspect the full response header set for any domain — caching, redirects, and security headers like HSTS, CSP and X-Frame-Options.
HTTP Headers
Server, content type and security headers — HSTS, CSP, Permissions-Policy and more.
Enter a domain above to run a real, live check.
Capabilities
What it checks
Security headers
HSTS, CSP, X-Frame-Options, X-Content-Type-Options and more.
Redirect chain
Full redirect path from the requested URL to its final destination.
Caching headers
Cache-Control, ETag and expiry directives.
Server fingerprint
Server and powered-by headers, when present.
Why use it
Benefits
- Audit security header coverage in seconds, no curl required.
- Debug an unexpected redirect chain after a CDN or DNS change.
- Confirm caching headers are actually being sent as configured.
FAQ
Frequently Asked Questions
The full response header set for a domain — server, caching, redirect chain, and security headers like HSTS, CSP and X-Frame-Options.