{"id":20665007,"url":"https://github.com/nicoswd/headsec","last_synced_at":"2026-04-17T14:32:59.837Z","repository":{"id":145372504,"uuid":"159410606","full_name":"nicoSWD/headsec","owner":"nicoSWD","description":"Check a site's security headers","archived":false,"fork":false,"pushed_at":"2019-04-22T20:09:13.000Z","size":1143,"stargazers_count":4,"open_issues_count":0,"forks_count":0,"subscribers_count":2,"default_branch":"master","last_synced_at":"2025-01-17T12:48:25.850Z","etag":null,"topics":["header-parser","http","security","security-audit","security-tools","securityheaders"],"latest_commit_sha":null,"homepage":"","language":"PHP","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/nicoSWD.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2018-11-27T22:47:35.000Z","updated_at":"2022-11-27T01:00:07.000Z","dependencies_parsed_at":null,"dependency_job_id":"caea6c8a-87c1-4de2-b92d-96b9f4b612af","html_url":"https://github.com/nicoSWD/headsec","commit_stats":null,"previous_names":[],"tags_count":2,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nicoSWD%2Fheadsec","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nicoSWD%2Fheadsec/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nicoSWD%2Fheadsec/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nicoSWD%2Fheadsec/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/nicoSWD","download_url":"https://codeload.github.com/nicoSWD/headsec/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":242829740,"owners_count":20192052,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["header-parser","http","security","security-audit","security-tools","securityheaders"],"created_at":"2024-11-16T19:27:24.390Z","updated_at":"2026-04-17T14:32:54.792Z","avatar_url":"https://github.com/nicoSWD.png","language":"PHP","funding_links":[],"categories":[],"sub_categories":[],"readme":"# headsec (\u0026beta;)\n[![Build Status](https://travis-ci.org/nicoSWD/headsec.svg?branch=master)](https://travis-ci.org/nicoSWD/headsec)\n[![Scrutinizer Code Quality](https://scrutinizer-ci.com/g/nicoSWD/headsec/badges/quality-score.png?b=master)](https://scrutinizer-ci.com/g/nicoSWD/headsec/?branch=master)\n\nTest a site's HTTP headers for possible security issues. This is a little like Scott Helme's [SecurityHeaders.com](https://securityheaders.com/),\nbut it can be run locally on your machine or CI\n\n![screenshot](screenshots/screenshot.gif)\n\n**Basic usage**\n\nThis will analise the headers returned by the supplied URL and print the results. By default, non-security headers\nare omitted in the output, but can be printed as well by passing the `--show-all-headers` flag (or `-a`)\n```shell\n$ headsec google.com\n```\n\nBy default it'll follow redirects and only print the results of the last URL. To stop following redirects, pass\nthe `--ignore-redirects` flag (or `-r`)\n```shell\n$ headsec google.com --ignore-redirects\n```\n\n**Advanced usage**\n\nIf you're trying to test an URL that requires authentication, a POST request, or anything\nof the like, you can use `curl` and pipe the result to `headsec`\n```shell\n$ curl https://yahoo.com/ --head -sS | headsec\n```\n\n**Installation**\n\n```shell\n$ curl https://raw.githubusercontent.com/nicoSWD/headsec/master/install.sh -sS | sh\n```\n\n**Build from source**\n\n**Build**\n```shell\n$ make\n```\n\n**Test**\n```shell\n$ make test\n```\n\n**Install**\n```shell\n$ make install\n```\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnicoswd%2Fheadsec","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fnicoswd%2Fheadsec","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnicoswd%2Fheadsec/lists"}