Security Headers

Thank you for visiting OWASP.org. We have migrated our community to a new web platform and regretably the content for this page needed to be programmatically ported from its previous wiki page. There’s still some work to be done.

The OWASP Secure Headers Project provides the technical information, about the HTTP headers, that can be leveraged from a security perspective.