Web Cookies Scanner
All-in-one free web application security tool. Web application vulnerability and privacy scanner with support for HTTP cookies, Flash, HTML5 localStorage, sessionStorage, CANVAS, Supercookies, Evercookies. Includes a free SSL/TLS, HTML and HTTP vulnerability scanner and URL malware scanner.
X-Content-Type-Options HTTP headerMost popular variants of the header value (we only show this when there's just a bunch of variants):
nosniff always
nosniff, nosniff, nosniff, nosniff, nosniff, nosn…
nosniff, nosniff”
nosniff
nosnif ALLOW-FROM
nosniff, nosniff, nosniff, nosniff, nosniff, nosn…
nosniff;
nosniff”
DENY
nosniff, nosniff, nosniff, nosniff
nosniff, nosniff, nosniff, nosniff, nosniff, nosn…
: nosniff
nosniff, nosniff
nosniff, nosniff, nosniff, nosniff, nosniff, nosn…
Nosniff
text/html
nosniffďż˝
nosniff,nosniff
'nosniff'
nosniff" always
NOSNIFF
no-sniff
nosniffnosniff
no sniff
nosniff, nosniff, nosniff
default-src 'self'; block-all-mixed-content; base…
A non-standard but widely accepted header introduced originally by Microsoft to disable "content sniffing" or heuristic content type discovery in absence or mismatch of a proper HTTP Content-Type declaration, which led to a number of web attacks. In general, presence of the header with its only defined value of nosniff is considered as part of a properly secured HTTP response.
We have seen 14200 websites setting the
X-Content-Type-Options HTTP header and 27 unique values of this header.
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff
nosniff