HTTP Observatory Report
HTTP Header Security report every week in your inbox.
Get a Customized Report on your website’s security status, including security headers and best practices guidance.
Reports, Decisions, Results...
Powered by Mozilla
Special thanks to our Sponsors & Partners for helping us to promote a Web Performance culture and supporting us to continue with this great mission. 🚀
The HTTP Observatory is a tool developed by Mozilla to help website owners understand how well their sites are implementing modern security practices at the HTTP level. It works by analyzing the response headers returned by a server and checking them against a set of best practices widely accepted across the web industry.
By including the HTTP Observatory in the WebPerformance Report, we provide an added layer of insight focused specifically on web security. The report evaluates your site for proper configuration of important headers such as Content Security Policy, Strict-Transport-Security, X-Frame-Options, Referrer Policy, and others. These headers play a vital role in defending your website against threats like clickjacking, code injection, and man-in-the-middle attacks.
Understanding and improving HTTP headers is often overlooked, yet it is essential for maintaining a secure and trustworthy website. With the help of the HTTP Observatory, we not only highlight areas for improvement but also guide you toward simple, actionable changes that can significantly boost your site’s security and compliance with web standards.
We are really proud that our users also come from big companies and big brands around the world and are using Web Performance Report to monitor the web performance of their websites every week from their inboxes. 🎉
WebPageTest Report
Catchpoint WebPageTest is the gold‑standard opensource web performance tool, enabling developers to monitor and optimize site performance.
HTTP Observatory Report
Developed by Mozilla, the HTTP Observatory performs an in-depth assessment of a site’s HTTP headers and other key security configurations.
HTTP Observatory Report Details
Scoring. CSP analysis. Cookies. Raw server headers. Scan history.
Scan Summary
Each site tested by Observatory is awarded a grade based on its final score.
Scoring
CSP, Cookies, CORS, Redirections, Referrer Policy, HSTS, SRI, X-Frame-Options
CSP Analysis
The HTTP Content-Security-Policy response header.
Raw Server Headers
Age, Date, Vary, Server, Connection, Content-Type, X-Powered-By, Cache_Control, Last-Modified.
Get Connected: info@webperformancereport.com
81477 Munich, Germany
(beta version)