shcheck (Security Header Check)
Tool and Usage
Why this tool?
This simple tool is a good option to test if advised HTTP headers are available on web application and websites. It can be used as a defensive measure during development, or offensive to find weaknesses in existing applications.
How it works
The tool connects to the given target and retrieves the available HTTP headers. It parses each header and checks them in the internal database. Depending on the presence of absence of a header, it will show its status.
Usage and audience
shcheck is commonly used for application security or web application analysis. Target users for this tool are developers, pentesters, and security professionals.
- Colored output
- Command line interface
Example usage and output
Tool review and remarks
The review and analysis of this project resulted in the following remarks for this security tool:
- + Very low number of dependencies
- + The source code of this software is available
- - No releases on GitHub available
Supported operating systems
Shcheck is known to work on Linux.
Similar tools to shcheck:
Web Application Security Scanner aimed towards helping users evaluate the security of web applications
CMSeeK is a security scanner for content management systems (CMS) and used for security assessments. Read how it works in this review.
Nikto is an open source security scanner which tests web servers for potential vulnerabilities.
This tool page was updated at . Found an improvement? Help the community by submitting an update.