Security.txt Generator
Create an RFC 9116 security.txt so researchers know how to report vulnerabilities — built in your browser
Fields
Contact and Expires are required. Contact and Encryption may have one value per line.
security.txt
Serve at /.well-known/security.txt
Contact: mailto:security@example.com
Expires: 2027-07-11T19:30:34Z
Preferred-Languages: en
Canonical: https://example.com/.well-known/security.txt
Frequently asked questions
Related tools
Token Cost Calculator
Estimate LLM API costs from input and output token counts across OpenAI, Anthropic, and Google models — or plug in custom per-million-token prices
Robots.txt Generator
Generate a valid robots.txt for search engines and AI crawlers — allow/disallow rules per user-agent, crawl-delay, sitemap directive, and one-click presets to block AI bots
Sitemap.xml Generator
Turn a list of URLs into a valid XML sitemap for search engines, with optional lastmod, changefreq, and priority per the sitemaps.org schema
PWA Manifest Generator
Create a web app manifest.json for a Progressive Web App — name, short name, theme and background colors, display mode, orientation, start URL, and icon entries
HTTP Header Builder
Assemble HTTP request headers from a form and export them as a raw request block, a curl command, or a JavaScript fetch() call
IPv6 Address Expander
Expand a compressed IPv6 address to its full 8-group form and compress it back per RFC 5952 — with validation, embedded-IPv4 support, and a per-group breakdown