HSTS and HTTPS behavior
Check whether HTTPS is used consistently and whether HSTS helps protect users from downgrade and mixed access risks.
Browser-facing security
Security Headers Checker for HSTS, CSP and Browser Protection
Scantide checks browser-facing website security headers and explains why they matter. Review HTTPS behavior, HSTS, Content Security Policy, frame protection, content type protection, referrer policy and related evidence.
Content Security Policy
Review whether CSP is present and whether the website has basic browser-side protection against unwanted script behavior.
Clickjacking and MIME controls
Look for frame protection and content type protections that help reduce common browser abuse patterns.
Headers Scantide can help review
Security headers are not magic, but they are important browser-facing controls. Scantide presents them as evidence with plain explanations.
Strict-Transport-Security
Helps browsers remember to use HTTPS for the site.
Content-Security-Policy
Can reduce the impact of script injection and limit where content may load from.
X-Frame-Options
Helps protect against unwanted framing on older or simpler deployments.
X-Content-Type-Options
Helps browsers avoid MIME-sniffing behavior that can increase risk.
Referrer-Policy
Controls how much URL/referrer information is sent to other sites.
Permissions-Policy
Limits access to browser features such as camera, microphone or geolocation where appropriate.
Related checks
Scantide combines header checks with TLS, cookies, scripts, trackers, contacted hosts and infrastructure context.
security headers checkerHSTS checkerCSP checkerX-Frame-Options checkerHTTPS security checkbrowser security headerswebsite hardening evidence
Questions people ask
Clear answers for teams that want evidence, not just a red, yellow or green verdict.
What is a security headers checker?
A security headers checker reviews browser-facing HTTP response headers that help control HTTPS behavior, content loading, framing, MIME handling, referrer leakage and browser feature access.
Does a missing header always mean a website is unsafe?
Not always. Missing headers are evidence to review. Scantide explains what was observed and why it may matter instead of treating every missing header the same.
Can Scantide check headers while browsing?
Yes. Scantide Observe can review browser-visible security and privacy evidence for the current page.
Can I check headers for a public domain?
Yes. Scantide Online can scan public domains and present security header evidence together with TLS, DNS and infrastructure context.
Use Scantide when the evidence matters
Scantide is built for readable security and privacy evidence: what was observed, where it was found, why it matters and what should be reviewed next.