Security is an essential part for every IT product.
HTTP security headers are a fundamental part of website security. Upon implementation, they protect you against the types of attacks that your site is most likely to come across. These headers protect against XSS, code injection, clickjacking, etc.
E.g. HTTP Strict Transport Security (HSTS) enforces the use of encrypted HTTPS connections instead of plain-text HTTP communication. X-Powered-By describes the technology which is used for website hosting, e.g. IIS or Apache, that's why the general recommendation is to hide this information.
What it does
Headers app for Microsoft Teams allows checking HTTP security headers of any website and providing the recommendations about how to improve a website security.
In addition, you can find information about security headers in a convenient way.
Please note, that we don't save any personal information or security checks results.