Web security tools
that don't suck.

Free, fast, privacy-first. Built for developers and security engineers. Everything runs in your browser or as a one-shot scan — we never store your data.

HeadersHTTPSWeb Security

HTTP Security Headers Checker

Inspect any URL for missing security headers. Get severity-ranked issues and copyable fix snippets.

Open tool →
CSPXSS Coming soon

CSP Builder

Build a strict Content Security Policy with a visual editor. Test against your site.

JWTAuth Coming soon

JWT Decoder

Decode and inspect JSON Web Tokens. Verify signatures and analyze claims.

NetworkOSINT Coming soon

IP & WHOIS Analyzer

Geolocation, ASN, WHOIS records, and VPN/proxy detection for any IP address.