Security Headers

URL: https://securityheaders.com/

Checks a site’s security-related HTTP headers.

Referrer Policy
Permissions Policy
HTTP Strict Transport Security (HSTS)
Cross-Origin Opener Policy (COOP)
Cross-Origin Embedder Policy (COEP)
Cross-Origin Resource Policy (CORP)
Content Security Policy (CSP)
X-Content-Type-Options
X-Frame-Options

Here’s a sample report for my domain:

Screenshot of report for www.unindented.org, with a score of A+.