This tool allows you to verify if X-Frame-Options header is enabled or not
The X-Frame-Options HTTP response header is used to tell a browser if it should allow a web page to be displayed in a <frame>, <iframe>, or <object> HTML element. This can be useful for protecting against clickjacking attacks, which are a type of attack where an attacker tricks a user into clicking a link or button on a page that appears to be from a trusted site, but actually takes the user to a malicious site.