About HTTP Headers
HTTP headers are components of the header section of request and response messages in the Hypertext Transfer Protocol (HTTP).
Common HTTP Headers:
- Content-Type: The media type of the resource
- Cache-Control: Directives for caching mechanisms
- Server: Information about the server software
- Location: Used in redirects
- Set-Cookie: Sets cookies on the client
- X-Frame-Options: Clickjacking protection
- Content-Security-Policy: Security policy for resources
Why check headers?
- Verify security headers are properly configured
- Check caching directives
- Debug redirect issues
- Verify content type and encoding
- Check for server information leaks