analyze_headers
Audit HTTP security headers of a URL, grading HSTS, CSP, and others, and flagging information-leaking headers and risky cookie flags.
Instructions
Fetch a URL and audit its HTTP security headers.
Grades (A-F) the presence of HSTS, CSP, X-Frame-Options, X-Content-Type- Options, Referrer-Policy and Permissions-Policy; flags information-leaking headers (Server, X-Powered-By, ...) and risky Set-Cookie flags. In scope only.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| target | Yes |