Document Standards

X-Frame-OptionsX-Frame-Options

X-Frame-Options Usage Statistics · Download List of All Websites using X-Frame-Options

The X-Frame-Options HTTP response header can be used to indicate whether or not a browser should be allowed to render a page in a frame or iframe. Sites can use this to avoid clickjacking attacks, by ensuring that their content is not embedded into other sites.

Browser Specific

X-XSS-ProtectionX-XSS-Protection

X-XSS-Protection Usage Statistics · Download List of All Websites using X-XSS-Protection

X-XSS-Protection is a HTTP header set by Internet Explorer 8+. This header lets domains toggle on and off the "XSS Filter" of IE8, which prevents some categories of XSS attacks.