HTTP Headers Parser
Paste raw HTTP response headers and get a clean key-value table. Understand caching, CORS, and security headers.
| Header | Value |
|---|
How to use the HTTP Headers Parser
-
Paste raw HTTP headers (from curl -I, DevTools, etc.).
-
Scan the key-value table.
-
Copy individual header values as needed.
What are HTTP headers?
HTTP headers are metadata sent with every web request and response — they control caching, content types, CORS permissions, security policies and cookies. Raw headers are colon-delimited text that's hard to scan. This parser splits each header into a labeled row so you can quickly understand what a server is sending and spot misconfigurations.
Key features
- Instant key-value table from raw headers
- Security header spotlight: CSP, HSTS, X-Frame-Options
- Cache header decoder: max-age, ETag, Last-Modified
- Runs locally — your headers are never uploaded
Frequently asked questions
Where do I get raw HTTP headers?
From your browser DevTools Network tab, curl -I, or any HTTP client. Copy the response headers block and paste it in.
Does this make HTTP requests?
No. It only parses headers you paste. No requests are made to any server.
Can it detect missing security headers?
Yes — it highlights commonly missing security headers like Content-Security-Policy and Strict-Transport-Security.