https://github.com/digitalocean/nginxconfig.io

⚙️ NGINX config generator on steroids 💉

cdn digitalocean digitalocean-community-tools drupal gzip hacktoberfest hsts http2 https letsencrypt nginx nginx-configs nginx-configuration php-fpm rate-limiting security security-headers ssl ssl-certificate wordpress

Last synced: 12 May 2025

https://github.com/typeerror/secure

Lightweight modern Python library to add security headers (CSP, HSTS, etc.) to Django, Flask, FastAPI, and more. Secure defaults or fully customizable.

content-security-policy django fastapi flask headers headers-security http-headers python python-security referrer-policy secure-headers security security-headers strict-transport-security web-security

Last synced: 14 May 2025

https://github.com/TypeError/secure

Lightweight modern Python library to add security headers (CSP, HSTS, etc.) to Django, Flask, FastAPI, and more. Secure defaults or fully customizable.

content-security-policy django fastapi flask headers headers-security http-headers python python-security referrer-policy secure-headers security security-headers strict-transport-security web-security

Last synced: 26 Mar 2025

https://github.com/treblle/security-headers

A collection of HTTP middleware classes to improve the security headers in your Laravel application

application-security backend classes collection http laravel laravel-package middleware php security-headers

Last synced: 09 Apr 2025

https://github.com/Treblle/security-headers

A collection of HTTP middleware classes to improve the security headers in your Laravel application

application-security backend classes collection http laravel laravel-package middleware php security-headers

Last synced: 14 Apr 2025

https://github.com/damienbod/separatingapispersecuritylevel

Auth0, ASP.NET Core OAuth, OIDC

aspnetcore auth0 blazor csp dotnet oauth oauth2 oidc security-headers

Last synced: 14 Apr 2025

https://github.com/bnomei/kirby3-security-headers

Kirby Plugin for easier Content Security Policy Headers

apache content-security-policy csp hash json kirby kirby-cms kirby-plugin kirby4 kirby5 nginx nonce security-headers yaml

Last synced: 13 Apr 2025

https://github.com/monish-khatri/security-headers

Package provides a minimal and simple integration to attach OWASP security headers for building a secure Laravel application.

composer-package laravel owasp-top-10 php8 security security-headers

Last synced: 10 Apr 2025

https://github.com/brickmakersgmbh/aspsecurityheaders

A small package for ASP.Net (Core) to automatically configure secure HTTP-Headers

asp-net asp-net-core brickmakers csharp csp dotnet dotnet-core hsts http-headers https security security-headers

Last synced: 24 Apr 2025

https://github.com/ramazancetinkaya/security-headers

Security Headers Documentation

htaccess security-headers

Last synced: 31 Jan 2026

https://github.com/jpiechowka/burp-security-headers-checker

Super simple Burp Suite extension adding passive scanner checks for missing security headers in server responses

burp burp-extensions burp-plugin burpsuite burpsuite-extender extension http-headers pentesting pentesting-tools plugin security-audit security-headers security-scanner security-tools

Last synced: 11 Jul 2025

https://github.com/ebrasha/abdal-security-headers

Abdal Security Headers is a powerful WordPress plugin that enhances your website's security through HTTP security headers. It provides an easy-to-use interface for managing security policies and protecting against common web vulnerabilities.

abdal abdal-security-group ebrahim-shafiei ebrasha hsts security security-headers wordpress wordpress-plugin wp

Last synced: 26 Jan 2026

https://github.com/michealroberts/nitro-helmet

Helmet security event handler for the Nitro web server

h3 helmet nitro nuxt nuxt3 security-headers

Last synced: 17 Jul 2025

https://github.com/jakewarren/shcheck

check a URL for security headers

golang headers security-headers security-tools

Last synced: 14 Jan 2026

https://github.com/markopapic/aspnetcoresecurityheaders

A set of Asp.Net Core middlewares for adding security headers to ASP.NET Core web apps.

asp-net-core content-security-policy expect-ct feature-policy public-key-pinning referrer-policy security security-headers strict-transport-security x-content-type-options x-frame-options x-xss-protection

Last synced: 23 Sep 2025

https://github.com/mnestorov/security-headers-cloudflare-worker

Cloudflare Worker script to dynamically add, modify, and remove HTTP headers for enhancing the security of any website.

clickjacking cloudflare code codeinjection cors headers http security-headers workers wrangler xss xss-filter

Last synced: 24 Jan 2026

https://github.com/911abaddon/securityheaderx

Instant web security analysis: detect vulnerabilities in HTTP headers, TLS, and CORS with a single scan

api-security appsec cloud-security container-security cybersecurity devsecops http-headers javascript nodejs owasp penetration-testing privacy security security-headers security-tools web-security

Last synced: 07 May 2025

https://github.com/kishornaik/sol_securityheaders_middleware_webapi

Example of Security Headers middleware in Asp.net core

aspnet-core security-headers

Last synced: 22 Feb 2025

https://github.com/prysaic-labs/opensitetrust

OpenSiteTrust is an open, explainable, and reusable website scoring ecosystem

brand-impersonation browser-extension community-moderation crowdsourcing domain-intelligence explainable-ai misinformation-detection open-api open-data phishing-detection privacy-by-design reputation-system risk-scoring scam-detection security-headers trust-and-safety trust-score url-analysis website-trust

Last synced: 04 Sep 2025

https://github.com/iamazeem/security-headers-action

GitHub Action to analyze HTTP response headers using securityheaders.com API (Linux, macOS, Windows)

github-action github-composite-action security-headers security-headers-scanner

Last synced: 08 Aug 2025

https://github.com/vrikodar/simba

Simba is a web headers security scanner

headers-scanner penetration-testing-tools security-headers security-scanner security-tools securityheader web-header website-header website-security

Last synced: 27 Dec 2025

https://github.com/nanaelie/http-headers-collection

EN: A simple and practical collection of HTTP headers with recommended values, effects, and related security risks. FR : Une collection simple et pratique d’en-têtes HTTP avec leurs valeurs recommandées, effets et risques de sécurité associés.

api-security best-practices cheatsheet collection devsecops headers headers-collection http http-headers infose markdown open-source security security-headers web web-dev web-security

Last synced: 19 Jun 2025

https://github.com/jackdbd/permissions-policy

Permissions-Policy in JavaScript

http http-header permissions-policy security-headers

Last synced: 01 Feb 2026

https://github.com/opensecurity/httparmor

secure HTTP headers generator

apache content-security-policy cross-origin csp generator headers nginx permissions-policy security security-headers spa static-site strict-transport-security

Last synced: 13 Sep 2025

https://github.com/ralvarezdev/go-security-headers

Security Headers functions for Golang projects

gin gin-gonic gin-middleware go go-gin go-lib go-library go-net go-package go-security-headers golang security-headers

Last synced: 06 Apr 2025

https://github.com/meysam81/csp-report-collector

Receive CSP violation reports and save them to Redis for later audit & investigation.

compliance content-security-policy csp csp-reporter csp-violations docker go golang http-server middleware observability rate-limiting redis reporting-api security security-audit security-headers security-monitoring violation-reporter web-security

Last synced: 23 Aug 2025

https://github.com/abdulghafoor921/csp-report-collector

csp-report-collector 🐙 Collect CSP violation reports and persist them in Redis for audit and investigation, a lightweight service for secure incident tracking.

compliance content-security-policy content-security-policy-report csp-reporter endpoint go http-server mariadb middleware mysql observability rate-limiting redis security security-headers violation-reporter web-security wip

Last synced: 23 Aug 2025

https://github.com/volkansah/security-headers

Here is a perfect, minimal paranoid set of security headers that you can add to your Apache .htaccess or server config to secure your site:

apache2 apache2-security headers-security htaccess htaccess-rule security security-headers

Last synced: 31 Aug 2025

https://github.com/jackdbd/http-response-headers-for-web-security

Presentation on HTTP response headers for web security

content-security-policy cross-origin-embedder-policy cross-origin-opener-policy cross-origin-resource-policy cross-origin-resource-sharing hsts security security-headers slidev

Last synced: 11 Mar 2025

https://github.com/shim369/nextjs-rails-app-frontend

await-async chatgpt4 crud-application dompurify fetch-api form-validation nextjs rails-api security-headers tailwind-css typescript

Last synced: 02 Mar 2025

https://github.com/shim369/nextjs-rails-app-backend

chatgpt4 crud-application csrf-protection postman-api rack-cors rails-api rails7 ruby ruby-on-rails security-headers sqlite3

Last synced: 23 Jul 2025

https://github.com/nizos/csp-docker

A Docker-based environment for testing and experimenting with Content Security Policies (CSP)

content-security-policy csp docker docker-compose nginx security-headers server

Last synced: 28 Jan 2026

https://github.com/rishi-raj-jain/security-headers-example

A demo that shows how to secure your website against some common attacks like XSS, code injection, clickjacking, etc.

content-security-policy edgio http-headers security-headers

Last synced: 01 Apr 2025