HTTP Headers Analysis for https://9horses2.com

Detected Technologies from Headers

See all in URL Inspect 3

Cloudflare NEL Monitoring

Cloudflare CDN

LiteSpeed

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=15552000

Content-Security-Policy

Good

default-src Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Strengthen CSP by removing 'unsafe-eval'
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding

connection: close
transfer-encoding: chunked
vary: Accept-Encoding

Caching Headers

Cache-Control

Caching

no-cache, private

cache-control: no-cache, private

Content Headers

Content-Type

Content

text/html; charset=UTF-8

content-type: text/html; charset=UTF-8

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: XSRF-TOKEN=eyJpdiI6ImZvenZEK1FqYnUyR0VFNEp6SFo1eHc9PSIsInZhbHVlIjoiVVZoTDh0VDd1U1J6RFN0VVlDZTRHRW1aWFRDdW53SmQyV3l0ckdvZU9nb1hzSmdROVBrMGY2TWFERWZ4V2o4V1ZYSjR3eEhvWFhJZ0hlOUIzR01HTFhJQURVdjlONmttMDRmb2I1K2NRUGZzRnpwK01XTGNUaFdpQjB0UGJIcFkiLCJtYWMiOiIwOWYxYmFiOWI1ODNhMWExMzBlMTI5MjlmZTc4NGU5MWY3OTc0YjE5OTlhNmE5MWZhNDNhNTEzNDA2ZmUxZWI0IiwidGFnIjoiIn0%3D; expires=Tue, 02-Jun-2026 11:07:04 GMT; Max-Age=7200; path=/; samesite=lax
modal115=eyJpdiI6IlBCYnN6a0dmblp4ak5WVVFaV1cxMXc9PSIsInZhbHVlIjoicUJvNXN5R0lFc1J6dlluYitmdkhKQXZrRjBZM3pjVmlvQVBiN1NkbHU3SzZzOTdzK0cwanY2Ry9sdTl1OVpjRSIsIm1hYyI6ImEzZDdiZTViN2I3OTBjNTQ5Y2NkZDViNjMxZWMwMDBiN2NmNjhhN2UyOThjNGUzNmIyMTE1ODk2NWI4OGQ5NGEiLCJ0YWciOiIifQ%3D%3D; expires=Tue, 02-Jun-2026 14:07:04 GMT; Max-Age=18000; path=/; httponly; samesite=lax
mpoplay_frontend_session=gyNbRQlUljNpgS33IC4KoQ5S7Thl1MKPu7CJER89; expires=Tue, 02-Jun-2026 11:07:04 GMT; Max-Age=7200; path=/; httponly; samesite=lax

Other Headers

Alt-Svc

Other

h3=":443"; ma=86400

Cf-Cache-Status

Other

DYNAMIC

Cf-Ray

Other

a0554e3af97cc974-IAD

Date

Other

Tue, 02 Jun 2026 09:07:04 GMT

Nel

Other

Report-To Group cf-nel max-age: 1w

success: 0.0%

Report-To

Other

Group cf-nel max-age: 1w

Endpoint 1 https://a.nel.cloudflare.com/report/v4?s=UB8oc9A3sYbnQ6RjXfUHTjp6LQleg3Kvrcl1sGDArUDfx01683dpcLs%2FpvpsxvRVKieEwpgf8mCJT9lTFXmlX9%2BqL8z4R9oDFl3ME4%2FxJqkEkgL32ei2PpTeJdcm0ik%3D

Server-Timing

Other

cfCacheStatus;desc="DYNAMIC", cfEdge;dur=9,cfOrigin;dur=1109

X-App-Version

Other

2.0.1997

X-Litespeed-Cache

Other

miss

alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
cf-ray: a0554e3af97cc974-IAD
date: Tue, 02 Jun 2026 09:07:04 GMT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=UB8oc9A3sYbnQ6RjXfUHTjp6LQleg3Kvrcl1sGDArUDfx01683dpcLs%2FpvpsxvRVKieEwpgf8mCJT9lTFXmlX9%2BqL8z4R9oDFl3ME4%2FxJqkEkgL32ei2PpTeJdcm0ik%3D"}]}
server-timing: cfCacheStatus;desc="DYNAMIC", cfEdge;dur=9,cfOrigin;dur=1109
x-app-version: 2.0.1997
x-litespeed-cache: miss

Recommendations

Enable compression (gzip/brotli) to improve performance