Get HTTP Headers
The HTTP Headers Checker is a free online tool that fetches and displays all HTTP response headers sent by any web server when a URL is requested. HTTP headers contain critical metadata about the server response — including content type, caching instructions, security policies, redirect locations and server software.
Inspecting HTTP headers is essential for web developers debugging server configurations, SEOs checking redirects and canonical headers, and security professionals auditing HTTP security headers.
How to Check HTTP Headers
- Enter any URL you want to inspect
- Click Get Headers
- View the complete list of response headers and their values
Key Headers to Examine
- Content-Type — MIME type of the response (text/html, application/json)
- Cache-Control — caching behavior instructions
- Location — redirect target URL (for 301/302 responses)
- X-Powered-By — server technology (PHP version, framework)
- Content-Security-Policy — XSS protection policy
- Strict-Transport-Security — HSTS header for HTTPS enforcement
- X-Frame-Options — clickjacking protection
Security Headers to Look For
A secure website should have: HSTS, Content-Security-Policy, X-Content-Type-Options and X-Frame-Options headers set. Missing these can leave the site vulnerable. Free, instant, no login required.