shcheck (Security Header Check)

LSE toolsLSE toolsshcheck (252)shcheck (252)

Tool and Usage

Security header check (shcheck) is a security tool to scan web applications and their HTTP headers. It can help securing web applications or detect weaknesses.

Why this tool?

This simple tool is a good option to test if advised HTTP headers are available on web application and websites. It can be used as a defensive measure during development, or offensive to find weaknesses in existing applications.

How it works

The tool connects to the given target and retrieves the available HTTP headers. It parses each header and checks them in the internal database. Depending on the presence of absence of a header, it will show its status.

Usage and audience

This tool is categorized as a website reconnaissance tool and website security audit tool.

shcheck is commonly used for application security or web application analysis. Target users for this tool are developers, pentesters, and security professionals.

Tool review

The review and analysis of this project resulted in the following remarks for this security tool:


  • + Very low number of dependencies
  • + The source code of this software is available


  • - No releases on GitHub available

Author and Maintainers

Shcheck is under development by Alessio Santoru.


Support operating systems

Shcheck is known to work on Linux.

This tool page was recently updated. Found an improvement? Become an influencer and submit an update.
Project details
Latest releaseNo release found
Last updatedSept. 17, 2017

Project health

This score is calculated by different factors, like project age, last release date, etc.


GitHub iconGitHub project

Related terms