Briskinfosec - Your Perfect Cybersecurity Partner

Stay Connected:

Security Header Check | Briskinfosec

Security Header Check



Shcheck detects which security headers are enabled on certain websites. It just check headers and print a report about which are enabled and which not. It just check the security headers on a target website.



Docker Installation:

Step 1: To build a docker container use the code below.

docker build -t shcheck .

Step 2: Then run the docker container by specifying the target website that you want to scan. Use the below command,

docker run -it --rm

Traditional Installation:

Step 1: Download or Clone the Shcheck tool in to your system.

root~#git clone

Step 2: The Navigate to the shcheck tool directory in your system.

root~#cd shcheck

Step 3: Now run the installation file as shown below.

root~shcheck# ./ -i –x

Usage with options

Usage: ./ [options]


  -h, --help            show this help message and exit

  -p PORT, --port=PORT  Set a custom port to connect to


                        Set cookies for the request


                        Add headers for the request e.g. 'Header: value'

  -d, --disable-ssl-check

                        Disable SSL/TLS certificate validation

  -g, --use-get-method  Use GET method instead HEAD method

  -j, --json-output     Print the output in JSON format

  -i, --information     Display information headers

  -x, --caching         Display caching headers

  --proxy=PROXY_URL     Set a proxy (Ex:

  --hfile=PATH_TO_FILE  Load a list of hosts from a flat file