Hi Sandesha,
You can add it to your web.config file and place it in the root of your webapp. Sample web.config file below :
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.webServer>
<httpProtocol>
<customHeaders>
<add name="X-Frame-Options" value="headerValue" />
<add name="X-Content-Type-Options" value="headerValue" />
<add name="Content-Security-Policy" value="headerValue" />
</customHeaders>
</httpProtocol>
</system.webServer>
</configuration>
Another method, if you have a server-side code running, would be to add the headers to the response via code.
Please click Accept Answer and upvote if the above was useful.
Thanks.
-TP