⚙️ NGINX config generator on steroids 💉

Modern Python library for HTTP security headers (CSP, HSTS, etc.) with secure defaults and presets for Shiny, FastAPI, Django, Flask, and other ASGI/WSGI apps.

Internet standards compliance test suite

A collection of HTTP middleware classes to improve the security headers in your Laravel application

Auth0, ASP.NET Core OAuth, OIDC

Kirby Plugin for easier Content Security Policy Headers

PoliteWebScanner is a learning-grade web vulnerability scanner plus AI-assisted report viewer. It crawls safely (queue-based, robots-aware, rate-limited), detects common issues (security headers, cookie flags, reflected XSS heuristics, SQL error patterns), and exports human-friendly JSON/HTML reports with optional AI help for triage and remediation

Package provides a minimal and simple integration to attach OWASP security headers for building a secure Laravel application.

A small package for ASP.Net (Core) to automatically configure secure HTTP-Headers

Security Headers Documentation

Cloudflare free plan security: WAF rules, DDoS protection, HTTP headers and AI bot control

A Python-based HTTP security header analyzer that identifies weak or missing policies (CSP, HSTS, XFO, etc.) and generates OWASP-aligned remediation reports.

A Security HTTP-Header Checker. # Demoisturize it!

Abdal Security Headers is a powerful WordPress plugin that enhances your website's security through HTTP security headers. It provides an easy-to-use interface for managing security policies and protecting against common web vulnerabilities.

Super simple Burp Suite extension adding passive scanner checks for missing security headers in server responses

OWASP Security Header Checker Tool

This TYPO3 extension offers configurable security headers for the frontend

Helmet security event handler for the Nitro web server

Security Headers — Complete Implementation Guide: Production-ready HTTP security headers for Apache, Nginx, Node.js, and more. Secure your sites and achieve an A+ rating instantly. ⚠️ JUST USE IT NOW ⚠️

Cloudflare Worker script to dynamically add, modify, and remove HTTP headers for enhancing the security of any website.