个人中心
今日签到
私信列表
消息中心
搜索全站
q_code

扫码关注官方微信
cell_code

扫码下载APP
返回顶部
技能集市 > AI智能 > security-headers
s

security-headersHTTP安全头审计

Audit HTTP security headers for any website — checks HSTS, CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy, COOP, CORP, and XSS-Protection. Grades sites A-F. Detects server info leakage (Server, X-Powered-By). Use when asked to check website security, audit headers, find missing security headers, or grade a site's HTTP security posture. Zero dependencies.

作者: admin | 来源: ClawHub
下载
源自
ClawHub
版本
V 1.0.0
安全检测
已通过
102
下载量
免费
免费
0
收藏
概述
安装方式
版本历史

security-headers

security-headers 🔒

HTTP安全标头审计工具,支持评级和信息泄露检测。

命令

bash

检查一个或多个站点(自动添加 https://)


python3 scripts/headers.py github.com example.com

JSON 格式输出

python3 scripts/headers.py --json example.com

检查项(9个标头)

  • - 🔴 高危:Strict-Transport-Security (HSTS)、Content-Security-Policy (CSP)
  • 🟡 中危:X-Content-Type-Options、X-Frame-Options、Referrer-Policy
  • 🟢 低危:Permissions-Policy、X-XSS-Protection、COOP、CORP

评级

  • - A(≥78%):7个以上标头存在
  • B(≥56%):5-6个标头
  • C(≥33%):3-4个标头
  • D(≥11%):1-2个标头
  • F(0%):无安全标头

信息泄露检测

标记会暴露技术栈的 Server、X-Powered-By、X-AspNet-Version、X-Generator 标头。

标签

skill ai

通过对话安装

该技能支持在以下平台通过对话安装:

OpenClaw WorkBuddy QClaw Kimi Claude

方式一:安装 SkillHub 和技能

帮我安装 SkillHub 和 headers-1775973497 技能

方式二:设置 SkillHub 为优先技能安装源

设置 SkillHub 为我的优先技能安装源,然后帮我安装 headers-1775973497 技能

通过命令行安装

skillhub install headers-1775973497

下载

⬇ 下载 security-headers v1.0.0(免费)

文件大小: 4.3 KB | 发布时间: 2026-4-13 10:32

v1.0.0 最新 2026-4-13 10:32
Initial release of security-headers skill.

- Audits HTTP security headers for any website and grades security posture A–F.
- Checks 9 essential headers including HSTS, CSP, and X-Frame-Options.
- Detects server information leakage via headers like Server and X-Powered-By.
- Provides command-line usage for single or multiple sites, with optional JSON output.
- Zero external dependencies.

相关推荐

s

self-improvement

Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Claude ('No, that's wrong...', 'Actually...'), (3) User requests a capability that doesn't exist, (4) An external API or tool fails, (5) Claude realizes its knowledge is outdated or incorrect, (6) A better approach is discovered for a recurring task. Also review learnings before major tasks.

⭐ 3209 ⬇ 392959
AI智能
s

self-improvement

Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Claude ('No, that's wrong...', 'Actually...'), (3) User requests a capability that doesn't exist, (4) An external API or tool fails, (5) Claude realizes its knowledge is outdated or incorrect, (6) A better approach is discovered for a recurring task. Also review learnings before major tasks.

⭐ 3209 ⬇ 392958
AI智能
s

self-improvement

Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Claude ('No, that's wrong...', 'Actually...'), (3) User requests a capability that doesn't exist, (4) An external API or tool fails, (5) Claude realizes its knowledge is outdated or incorrect, (6) A better approach is discovered for a recurring task. Also review learnings before major tasks.

⭐ 3195 ⬇ 389590
AI智能
s

self-improvement

Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Claude ('No, that's wrong...', 'Actually...'), (3) User requests a capability that doesn't exist, (4) An external API or tool fails, (5) Claude realizes its knowledge is outdated or incorrect, (6) A better approach is discovered for a recurring task. Also review learnings before major tasks.

⭐ 3177 ⬇ 386645
AI智能

多链集团旗下-闲社网

闲社网热线
免费联系电话
0527-80111111
            qqline

服务时间:周一到周日 8:00-24:00

  • 公众号
    闲社 闲社线报社区
关注闲社网
  • wxkf

    闲社在线客服

  • wx

    关注闲社网微信

  • app

    闲社网APP

Archiver·手机版·闲社网·闲社论坛·羊毛社区· 多链控股集团有限公司 · 苏ICP备2025199260号-1

Powered by Discuz! X5.0   © 2024-2025 闲社网·线报更新论坛·羊毛分享社区·http://xianshe.com

p2p_official_large
返回顶部