HSTS — Websites Using HSTS | WhatStack

Lookup Sites Technologies Pricing

W

WhatStack

Detect the full technology stack of any website. Identify CMS platforms, JavaScript frameworks, analytics tools, ad tech, hosting providers, and 8,000+ web technologies.

Free API access included. Built for developers, agencies, and sales teams doing lead generation and competitive research.

Product

Technology Lookup
Technology Directory
Website Directory
Pricing & Plans
API Documentation
Browser Extension
Blog
Dashboard
Contribute

Categories

CMS & Site Builders
Ecommerce & Payments
JavaScript Frameworks
Analytics & Tracking
Advertising & Marketing
Infrastructure & Hosting
Security & Privacy

Popular Technologies

WordPress
Shopify
React
Next.js
Google Analytics
Cloudflare
WooCommerce

Compare

vs BuiltWith
vs Wappalyzer
vs WhatCMS

Account

Sign in
Create account

What is WhatStack?

WhatStack is a technology detection and website profiling platform. Discover what CMS, frameworks, analytics, ad tech, payment processors, and hosting providers any website uses. Our detection engine analyzes HTTP headers, HTML patterns, JavaScript globals, DNS records, cookies, and ads.txt to identify 8,000+ web technologies with high accuracy.

Use Cases

Lead generation for agencies and SaaS companies. Competitive analysis and market research. Technology adoption tracking across industries. Sales prospecting based on technology stack. Website auditing and technology profiling for consulting.

© 2026 WhatStack. All rights reserved.

Detecting 8,000+ web technologies across CMS, ecommerce, analytics, advertising, and more.

HSTS — Websites Using HSTS | WhatStack

Websites Using HSTS

HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.

Categories: Security

Official website: https://www.rfc-editor.org/rfc/rfc6797#section-6.1

50 websites using HSTS

HSTS is ranked #1 of 316 in Security by website adoption.

Security alternatives ranked by popularity

Cloudflare WAF — 52,384 websites
Cloudflare Bot Management — 32,541 websites
reCAPTCHA — 31,130 websites
Cloudflare DDoS Protection — 24,882 websites
reCAPTCHA Enterprise — 17,344 websites
hCaptcha — 7,159 websites
Akamai Kona Site Defender — 5,720 websites
Cloudflare Turnstile — 5,485 websites
DDoS-Guard — 2,925 websites
Imperva — 2,451 websites

How WhatStack detects HSTS

WhatStack detects HSTS by analyzing HTTP headers, HTML source code, JavaScript globals, meta tags, cookies, DNS records, and ads.txt entries using signature-based pattern matching across 10 different analyzers.

Frequently Asked Questions

What is HSTS?: HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.
How many websites use HSTS?: WhatStack has detected HSTS on 50 websites in our database.
How do you detect HSTS?: We analyze HTTP headers, HTML source, JavaScript globals, meta tags, cookies, DNS records, and ads.txt entries to identify HSTS with high accuracy using signature-based pattern matching.