Projects in Awesome Lists tagged with security-headers
A curated list of projects in awesome lists tagged with security-headers .
https://github.com/digitalocean/nginxconfig.io
⚙️ NGINX config generator on steroids 💉
cdn digitalocean digitalocean-community-tools drupal gzip hacktoberfest hsts http2 https letsencrypt nginx nginx-configs nginx-configuration php-fpm rate-limiting security security-headers ssl ssl-certificate wordpress
Last synced: 12 May 2025
https://github.com/typeerror/secure
Lightweight modern Python library to add security headers (CSP, HSTS, etc.) to Django, Flask, FastAPI, and more. Secure defaults or fully customizable.
content-security-policy django fastapi flask headers headers-security http-headers python python-security referrer-policy secure-headers security security-headers strict-transport-security web-security
Last synced: 14 May 2025
https://github.com/TypeError/secure
Lightweight modern Python library to add security headers (CSP, HSTS, etc.) to Django, Flask, FastAPI, and more. Secure defaults or fully customizable.
content-security-policy django fastapi flask headers headers-security http-headers python python-security referrer-policy secure-headers security security-headers strict-transport-security web-security
Last synced: 26 Mar 2025
https://github.com/treblle/security-headers
A collection of HTTP middleware classes to improve the security headers in your Laravel application
application-security backend classes collection http laravel laravel-package middleware php security-headers
Last synced: 09 Apr 2025
https://github.com/Treblle/security-headers
A collection of HTTP middleware classes to improve the security headers in your Laravel application
application-security backend classes collection http laravel laravel-package middleware php security-headers
Last synced: 14 Apr 2025
https://github.com/damienbod/separatingapispersecuritylevel
Auth0, ASP.NET Core OAuth, OIDC
aspnetcore auth0 blazor csp dotnet oauth oauth2 oidc security-headers
Last synced: 14 Apr 2025
https://github.com/bnomei/kirby3-security-headers
Kirby Plugin for easier Content Security Policy Headers
apache content-security-policy csp hash json kirby kirby-cms kirby-plugin kirby4 kirby5 nginx nonce security-headers yaml
Last synced: 13 Apr 2025
https://github.com/monish-khatri/security-headers
Package provides a minimal and simple integration to attach OWASP security headers for building a secure Laravel application.
composer-package laravel owasp-top-10 php8 security security-headers
Last synced: 10 Apr 2025
https://github.com/brickmakersgmbh/aspsecurityheaders
A small package for ASP.Net (Core) to automatically configure secure HTTP-Headers
asp-net asp-net-core brickmakers csharp csp dotnet dotnet-core hsts http-headers https security security-headers
Last synced: 24 Apr 2025
https://github.com/ramazancetinkaya/security-headers
Security Headers Documentation
Last synced: 31 Jan 2026
https://github.com/jpiechowka/burp-security-headers-checker
Super simple Burp Suite extension adding passive scanner checks for missing security headers in server responses
burp burp-extensions burp-plugin burpsuite burpsuite-extender extension http-headers pentesting pentesting-tools plugin security-audit security-headers security-scanner security-tools
Last synced: 11 Jul 2025
https://github.com/ebrasha/abdal-security-headers
Abdal Security Headers is a powerful WordPress plugin that enhances your website's security through HTTP security headers. It provides an easy-to-use interface for managing security policies and protecting against common web vulnerabilities.
abdal abdal-security-group ebrahim-shafiei ebrasha hsts security security-headers wordpress wordpress-plugin wp
Last synced: 26 Jan 2026
https://github.com/michealroberts/nitro-helmet
Helmet security event handler for the Nitro web server
h3 helmet nitro nuxt nuxt3 security-headers
Last synced: 17 Jul 2025
https://github.com/jakewarren/shcheck
check a URL for security headers
golang headers security-headers security-tools
Last synced: 14 Jan 2026
https://github.com/markopapic/aspnetcoresecurityheaders
A set of Asp.Net Core middlewares for adding security headers to ASP.NET Core web apps.
asp-net-core content-security-policy expect-ct feature-policy public-key-pinning referrer-policy security security-headers strict-transport-security x-content-type-options x-frame-options x-xss-protection
Last synced: 23 Sep 2025
https://github.com/mnestorov/security-headers-cloudflare-worker
Cloudflare Worker script to dynamically add, modify, and remove HTTP headers for enhancing the security of any website.
clickjacking cloudflare code codeinjection cors headers http security-headers workers wrangler xss xss-filter
Last synced: 24 Jan 2026
https://github.com/911abaddon/securityheaderx
Instant web security analysis: detect vulnerabilities in HTTP headers, TLS, and CORS with a single scan
api-security appsec cloud-security container-security cybersecurity devsecops http-headers javascript nodejs owasp penetration-testing privacy security security-headers security-tools web-security
Last synced: 07 May 2025
https://github.com/kishornaik/sol_securityheaders_middleware_webapi
Example of Security Headers middleware in Asp.net core
Last synced: 22 Feb 2025
https://github.com/prysaic-labs/opensitetrust
OpenSiteTrust is an open, explainable, and reusable website scoring ecosystem
brand-impersonation browser-extension community-moderation crowdsourcing domain-intelligence explainable-ai misinformation-detection open-api open-data phishing-detection privacy-by-design reputation-system risk-scoring scam-detection security-headers trust-and-safety trust-score url-analysis website-trust
Last synced: 04 Sep 2025
https://github.com/iamazeem/security-headers-action
GitHub Action to analyze HTTP response headers using securityheaders.com API (Linux, macOS, Windows)
github-action github-composite-action security-headers security-headers-scanner
Last synced: 08 Aug 2025
https://github.com/vrikodar/simba
Simba is a web headers security scanner
headers-scanner penetration-testing-tools security-headers security-scanner security-tools securityheader web-header website-header website-security
Last synced: 27 Dec 2025
https://github.com/nanaelie/http-headers-collection
EN: A simple and practical collection of HTTP headers with recommended values, effects, and related security risks. FR : Une collection simple et pratique d’en-têtes HTTP avec leurs valeurs recommandées, effets et risques de sécurité associés.
api-security best-practices cheatsheet collection devsecops headers headers-collection http http-headers infose markdown open-source security security-headers web web-dev web-security
Last synced: 19 Jun 2025
https://github.com/jackdbd/permissions-policy
Permissions-Policy in JavaScript
http http-header permissions-policy security-headers
Last synced: 01 Feb 2026
https://github.com/opensecurity/httparmor
secure HTTP headers generator
apache content-security-policy cross-origin csp generator headers nginx permissions-policy security security-headers spa static-site strict-transport-security
Last synced: 13 Sep 2025
https://github.com/ralvarezdev/go-security-headers
Security Headers functions for Golang projects
gin gin-gonic gin-middleware go go-gin go-lib go-library go-net go-package go-security-headers golang security-headers
Last synced: 06 Apr 2025
https://github.com/meysam81/csp-report-collector
Receive CSP violation reports and save them to Redis for later audit & investigation.
compliance content-security-policy csp csp-reporter csp-violations docker go golang http-server middleware observability rate-limiting redis reporting-api security security-audit security-headers security-monitoring violation-reporter web-security
Last synced: 23 Aug 2025
https://github.com/abdulghafoor921/csp-report-collector
csp-report-collector 🐙 Collect CSP violation reports and persist them in Redis for audit and investigation, a lightweight service for secure incident tracking.
compliance content-security-policy content-security-policy-report csp-reporter endpoint go http-server mariadb middleware mysql observability rate-limiting redis security security-headers violation-reporter web-security wip
Last synced: 23 Aug 2025
https://github.com/volkansah/security-headers
Here is a perfect, minimal paranoid set of security headers that you can add to your Apache .htaccess or server config to secure your site:
apache2 apache2-security headers-security htaccess htaccess-rule security security-headers
Last synced: 31 Aug 2025
https://github.com/jackdbd/http-response-headers-for-web-security
Presentation on HTTP response headers for web security
content-security-policy cross-origin-embedder-policy cross-origin-opener-policy cross-origin-resource-policy cross-origin-resource-sharing hsts security security-headers slidev
Last synced: 11 Mar 2025
https://github.com/nizos/csp-docker
A Docker-based environment for testing and experimenting with Content Security Policies (CSP)
content-security-policy csp docker docker-compose nginx security-headers server
Last synced: 28 Jan 2026
https://github.com/rishi-raj-jain/security-headers-example
A demo that shows how to secure your website against some common attacks like XSS, code injection, clickjacking, etc.
content-security-policy edgio http-headers security-headers
Last synced: 01 Apr 2025