HTTP Headers

HTTP response headers are metadata sent by a web server along with the response body. They control caching behavior, content type, security policies, CORS rules, and more. Inspecting headers helps debug API issues, verify security configurations, and understand server behavior.

Key security headers include Strict-Transport-Security (HSTS) to enforce HTTPS, Content-Security-Policy (CSP) to prevent XSS, X-Content-Type-Options to prevent MIME sniffing, and X-Frame-Options to prevent clickjacking.

An HTTP GET request is sent from our server and displays the response headers. We do not log URLs or store results.