AgentSkill.club - Claude Skills Marketplace Logoagentskill.club

analyzing-security-headersClaude Skill

Analyze HTTP security headers of web domains to identify vulnerabilities and misconfigurations.

1.4k Stars
173 Forks
2025/10/10

Install & Download

Linux / macOS:

请登录后查看安装命令

Windows (PowerShell):

请登录后查看安装命令

Download and extract to ~/.claude/skills/

nameanalyzing-security-headers
descriptionAnalyze HTTP security headers of web domains to identify vulnerabilities and misconfigurations. Use when you need to audit website security headers, assess header compliance, or get security recommendations for web applications. Trigger with phrases like "analyze security headers", "check HTTP headers", "audit website security headers", or "evaluate CSP and HSTS configuration".
allowed-toolsRead, WebFetch, WebSearch, Grep
version1.0.0
authorJeremy Longshore <jeremy@intentsolutions.io>
licenseMIT

Analyzing Security Headers

Overview

This skill provides automated assistance for the described functionality.

Prerequisites

Before using this skill, ensure:

  • Target URL or domain name is accessible
  • Network connectivity for HTTP requests
  • Permission to scan the target domain
  • Optional: Save results to {baseDir}/security-reports/

Instructions

  1. Collect the target URL/domain and environment context (CDN/proxy, redirects).
  2. Fetch response headers (HTTP/HTTPS) and capture redirects/cookies.
  3. Compare headers to recommended baselines and score gaps.
  4. Provide concrete remediation steps and verify fixes.

See {baseDir}/references/implementation.md for detailed implementation guide.

Output

The skill produces:

Primary Output: Security headers analysis report

Report Structure:

# Security Headers Analysis - example.com

## Error Handling

See `{baseDir}/references/errors.md` for comprehensive error handling.

## Examples

See `{baseDir}/references/examples.md` for detailed examples.

## Resources

- OWASP Secure Headers Project: https://owasp.org/www-project-secure-headers/
- MDN Security Headers Guide: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers#security
- Security Headers Scanner: https://securityheaders.com/
- CSP Reference: https://content-security-policy.com/
- HSTS Preload: https://hstspreload.org/

Similar Claude Skills & Agent Workflows

idapython

5.1k
mrexodia's avatar - Developer of idapython Claude skillmrexodia/ida-pro-mcp
2026/01/18

IDA Pro Python scripting for reverse engineering.

webhook-signature-validator

1.0k
jeremylongshore's avatar - Developer of webhook-signature-validator Claude skilljeremylongshore/claude-code-plugins-plus-skills
2026/01/18

Validate webhook signature validator operations.

bearer-token-validator

1.0k
jeremylongshore's avatar - Developer of bearer-token-validator Claude skilljeremylongshore/claude-code-plugins-plus-skills
2026/01/18

Validate bearer token validator operations.

api-key-auth-setup

1.0k
jeremylongshore's avatar - Developer of api-key-auth-setup Claude skilljeremylongshore/claude-code-plugins-plus-skills
2026/01/18

Configure api key auth setup operations.

iam-binding-creator

1.0k
jeremylongshore's avatar - Developer of iam-binding-creator Claude skilljeremylongshore/claude-code-plugins-plus-skills
2026/01/18

Create iam binding creator operations.

firewall-rule-generator

1.0k
jeremylongshore's avatar - Developer of firewall-rule-generator Claude skilljeremylongshore/claude-code-plugins-plus-skills
2026/01/18

Generate firewall rule generator operations.