SEOGeoAuditCheck Logo
Back to All Guides

HSTS Test

Checks for the presence of the Strict-Transport-Security header.

What is this check?

HSTS (HTTP Strict Transport Security) is a security header that tells browsers they should only ever communicate with your site using HTTPS, never HTTP.

Why is it important?

It protects against protocol downgrade attacks and cookie hijacking. Once a browser sees the HSTS header, it will automatically convert all future HTTP requests to HTTPS, even if a user types `http://` or clicks an HTTP link.

What is the impact?

It's an important security enhancement that hardens your site's HTTPS implementation.

Example Implementation

# Example HSTS Header
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload