Analyze 27 security headers with grading (A+ to F), CORS misconfiguration detection, cookie security audit, information disclosure scanning, CSP evaluator, side-by-side comparison, and exportable reports (Markdown/JSON/OWASP). All local.
Security Header Scanner
Scan any URL for missing security headers with A+ to F grade.
CSP Evaluator
Analyze Content Security Policy for misconfigurations.
CORS Misconfiguration Scanner
Test URLs for CORS misconfigurations with exploit code.
HTTP Request Parser
Parse raw HTTP requests and auto-extract security details.