Remove headers from a curl command

Chrome DevTools copies every header the browser sent — including ones curl adds automatically or that only matter inside the browser. Curl Cleaner removes them by default so you get a minimal, replayable command.

Headers removed by default

• User-Agent — browser and OS identification.
• Accept, Accept-Language, Accept-Encoding — content negotiation hints.
• Origin, Referer — page context for CORS (not needed in scripts).
• Sec-Fetch-*, sec-ch-ua* — browser security and client hints.
• Connection, Host, Content-Length — curl sets these automatically.
• Most X-* custom headers (configurable in Settings).

Headers kept by default

• Authorization — API keys and Bearer tokens.
• Content-Type — request body format.
• Cookie — session cookies (can be toggled off in Settings).
• Other application-specific headers not on the strip list.

Customize with Settings

Open the gear icon on the home page to fine-tune behavior:

• Keep Cookie — retain or drop Cookie and -b flags.
• Strip X-* — remove custom headers like X-Request-Id (add exceptions under “Always keep”).
• Always strip / Always keep — per-header allow and deny lists; keep wins over strip.
• Compress output — single-line curl with no line continuations.

Manual vs automatic removal

You can hand-edit a curl command to delete -H lines, but DevTools exports often have 15–25 headers. Curl Cleaner applies consistent rules every time and shows how many headers were removed and how much smaller the output is.