A modern web application for scanning and analyzing HTTP security headers of websites, following OWASP Secure Headers Project recommendations.
- Quick Security Analysis: Scan any public website for security headers in seconds
- Comprehensive Scoring: Get a 0-100 security score based on weighted rules
- Detailed Reports: View detected headers, missing headers, and leaking headers
- Shareable Results: Each scan generates a unique URL with shareable image for social media
- React 19 + TypeScript 5
- Vite for fast bundling
- Tailwind CSS 4 + shadcn/ui components
- Hash-based routing
- Cloudflare Workers (TypeScript)
- Clean Architecture principles
- Cloudflare D1 (serverless SQLite) for reports
- Cloudflare R2 for storing share images
- Node.js (LTS version)
- npm or yarn
# Clone the repository
git clone https://github.com/bartosz-io/http-scanner.git
cd http-scanner
# Install dependencies
npm install
# Start development server
npm run dev# Run development server
npm run dev
# Build for production
npm run build
# Deploy to Cloudflare Workers
npm run deploy# Run unit tests
npm test
# Run e2e tests with Playwright
npm run test:e2eThis project is licensed under the MIT License - see the LICENSE file for details.
Contributions are welcome! Please follow the conventional commits standard for your commit messages and use feature branches with descriptive names.
- Fork the repository
- Create your feature branch (
git checkout -b feature/amazing-feature) - Commit your changes (
git commit -m 'feat: add some amazing feature') - Push to the branch (
git push origin feature/amazing-feature) - Open a Pull Request