HTTP Header Analyzer
Parse and analyze HTTP request or response headers. Identifies categories, explains each header, flags missing security headers, and detects duplicates or suspicious values — entirely in your browser.
How to Use HTTP Header Analyzer
How to Use the HTTP Header Analyzer
Step 1: Paste Your Headers
Paste raw HTTP headers (one Header-Name: value per line) into the input field. You can paste:
- Request headers copied from browser DevTools → Network → Headers tab
- Response headers from curl output (
curl -I https://example.com) - Headers from API testing tools like Postman or Insomnia
- Any
Key: Valueblock of header lines
Step 2: Review the Results
The analyzer immediately shows:
- Parsed table — header name, category badge (authentication, content, caching, security, CORS, forwarding, custom), and value
- Header explanations — each known header includes a plain-English description
- Security check — lists any recommended security headers not found in the input
- Warnings — flags duplicate headers, missing cookie security attributes, exposed server versions, and wildcard CORS origins
Step 3: Export Results
Click Copy as JSON to copy the parsed headers as a JSON array, or Download JSON to save a full audit report including missing headers and summary statistics.
Header Categories
- Authentication — Authorization, Cookie, Set-Cookie, WWW-Authenticate
- Content — Content-Type, Accept, User-Agent, Host, Location
- Caching — Cache-Control, ETag, Vary, Expires, Age
- Security — CSP, HSTS, X-Frame-Options, X-Content-Type-Options, Permissions-Policy
- CORS — Access-Control-Allow-Origin, Access-Control-Allow-Methods, Origin
- Forwarding — X-Forwarded-For, X-Forwarded-Proto, X-Real-IP
- Custom — Non-standard headers (X-Request-ID, X-API-Version, etc.)
Recommended Security Headers Checked
- Strict-Transport-Security — forces HTTPS within the max-age window (HSTS)
- Content-Security-Policy — restricts resource sources to prevent XSS
- X-Frame-Options — prevents clickjacking by blocking iframe embedding
- X-Content-Type-Options — stops MIME-type sniffing
- Referrer-Policy — controls how much referrer information is shared
- Permissions-Policy — restricts browser feature access (camera, mic, geolocation)
Frequently Asked Questions
Most Viewed Tools
Screen Size Converter
Calculate screen width and height from diagonal size and aspect ratio. Convert between inches and centimeters for displays, TVs, and monitors with instant dimension calculations.
Use Tool →Reorder PDF Pages
Drag and drop to rearrange PDF pages in any order. Upload your PDF, preview all pages as thumbnails, drag pages to reorder them, and download the rearranged PDF. Fast, visual, and privacy-focused.
Use Tool →DPI Calculator
Calculate DPI (dots per inch), image dimensions, and print sizes. Convert between pixels and physical dimensions for printing and displays.
Use Tool →Paper Size Converter
Convert between international paper sizes (A4, Letter, Legal) with dimensions in mm, cm, and inches. Compare ISO A/B series and North American paper standards.
Use Tool →Fuel Consumption Converter
Convert between MPG (miles per gallon), L/100km (liters per 100 kilometers), and other fuel efficiency units. Compare car fuel economy across different measurement systems.
Use Tool →CSV Splitter
Split large CSV files into smaller files by number of rows. Process large datasets in manageable chunks instantly.
Use Tool →Product Schema Generator
Generate JSON-LD Product schema markup for SEO. Add product details like name, price, brand, rating, and availability to create structured data for rich search results.
Use Tool →Large Text File Viewer
View and search large text files up to 200MB in your browser. Features virtual scrolling, line numbers, search functionality, and file statistics. Perfect for log files, CSV, JSON, and code files.
Use Tool →Related DevOps & Infrastructure Tools
Cookie Parser
Parse HTTP cookie strings into readable key-value pairs. Decode URL-encoded values and inspect cookies from browser requests.
Use Tool →User Agent Parser
Parse user agent strings to extract browser, operating system, device, and engine information. Essential for web analytics, device detection, and browser compatibility testing.
Use Tool →MIME Type Finder
Find MIME type for file extensions instantly. Look up media types for images, videos, documents, and more.
Use Tool →Sitemap Validator
Validate XML sitemaps against the sitemap protocol specification. Checks structure, required fields, URL count, changefreq values, and priority ranges. Supports both URL sitemaps and sitemap index files. Free and runs entirely in your browser.
Use Tool →Robots.txt Generator
Generate robots.txt file to control search engine crawlers. Create user-agent rules, allow/disallow paths, set crawl delays, and add sitemap URLs. Perfect for managing bot access to your website.
Use Tool →SSL Certificate & Key Decoder
Decode X.509 SSL/TLS certificates and RSA private keys in your browser. View subject, issuer, SANs, validity dates, key type, serial number, and SHA-256/SHA-1 fingerprints. Optionally check if a certificate and private key match.
Use Tool →robots.txt Validator
Validate your robots.txt file against the Robots Exclusion Protocol. Checks directive syntax, path formats, Crawl-delay values, and Sitemap URLs. Previews crawl rules per user-agent group. Free and runs entirely in your browser.
Use Tool →Random User Agent Generator
Generate random browser user agent strings for testing and development.
Use Tool →Share Your Feedback
Help us improve this tool by sharing your experience