# Security OverviewApply core security protections in Thulite with practical guidance for CSP, secure headers, and anti-scraping techniques for public websites.

Use this section to apply essential security protections at the framework and hosting layer.

## Security Guides

{{< card-grid >}}
{{< link-card title="Content Security Policy" description="Restrict allowed resource sources to reduce XSS and injection risk." href="/advanced/security/content-security-policy/" >}}
{{< link-card title="Headers" description="Set secure HTTP headers such as HSTS, nosniff, and permissions policy." href="/advanced/security/headers/" >}}
{{< /card-grid >}}

{{< card-grid >}}
{{< link-card title="Email Obfuscation" description="Protect published email addresses from basic scraping bots." href="/advanced/security/email-obfuscation/" class="w-50" >}}
{{< /card-grid >}}