Submit your favorite resources for free.

Sign In

HackDB

Sign In

Tag

Listing

Pages

Company

shcheck

shcheck is a tool to check security headers of a website, reporting which are enabled and which are not.

Visit Website Share on X

Visit Website

Introduction

shcheck - Security Header Check

shcheck is a tool designed to help security professionals and developers quickly assess the security posture of a website by checking its HTTP response headers. It identifies which security headers are enabled, providing a clear report on the website's configuration.

Key features:

Header Checking: Analyzes HTTP response headers to determine if security-related headers are present and properly configured.
Reporting: Generates a report indicating which security headers are enabled and which are missing.
Customizable: Supports custom ports, cookies, and additional headers for requests.
Proxy Support: Allows traffic to be routed through a proxy for testing purposes.
Multiple Installation Methods: Can be installed via pip, Docker, or run directly from source.

Use cases:

Security Audits: Quickly assess the security header configuration of web applications.
Compliance Testing: Verify that websites meet security header requirements.
Development: Ensure that security headers are properly implemented during development.
Bug Bounty: Identify misconfigured or missing security headers on target websites.

Back

Information

Publisher
Admin
Websitegithub.com
Created date04/11/2025
Published date04/11/2025

More Resources

AI SecurityApplication SecurityInfrastructure SecurityReconnaissance

Visit Website

PentAGI

Details

Autonomous AI agent system for complex penetration testing, integrating security tools, long-term memory, and smart task delegation in sandboxed Docker.

AI OSINT Web Internal External

Infrastructure SecurityApplication SecurityReconnaissanceReporting

Visit Website

Intruder

Details

Unified exposure management platform for automated vulnerability scanning, attack surface monitoring, and cloud security posture management.

External Internal Cloud API Web+2

Red Team OperationsInfrastructure SecurityReconnaissanceApplication Security

Visit Website

NeroSwarm Deception Lab

Details

NeroSwarm Deception Lab offers free cyber deception tools including honeytoken creation, honeypot script generation, and IP threat reputation checking.

OSINT Internal External

shcheck