Skip to content
This repository has been archived by the owner. It is now read-only.
Test for security related http headers
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
config
data/cache
module
public
vendor
LICENSE
README.md
composer.json
composer.lock
composer.phar
init_autoloader.php

README.md

HTTP Security Headers

Tests for presence and proper configuration of the following headers:

  • X-XSS-Protection
  • X-Content-Type-Options
  • X-Frame-Options (deprecated)
  • Strict-Transport-Security
  • Content-Security-Policy
  • Content-Type
  • Cache-Control
  • Pragma
  • Expires
  • X-Permitted-Cross-Domain-Policies
  • Access-Control-Allow-Origin
  • X-Powered-By
  • Server
  • Set-Cookie

Installation

Go to https://github.com/RandomAdversary/HTTP-Security-Headers and click the “Download ZIP” button.

This will download a file with a name like HTTP-Security-Headers-master.zip.

Unzip this file into the directory where you keep all your vhosts and rename the resultant directory to name of your choice.

HTTP Security Headers uses Zend Framework 2 which needs to be downloaded and installed separately using Composer.

Composer can be downloaded at getcomposer.org

To install Zend Framework 2 into our application we simply type:

php composer.phar self-update
php composer.phar install

from the HTTP Security Headers folder.

Screenshots

Home Results Results Techcrunch

You can’t perform that action at this time.