HTTP Headers Analysis for https://account.microsoft.com

Detected Technologies from Headers

See all in URL Inspect 1

AzureFrontDoor

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31536000

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

connection: close

Caching Headers

Cache-Control

Caching

no-cache, no-store

Expires

Caching

-1

Pragma

Caching

no-cache

cache-control: no-cache, no-store
expires: -1
pragma: no-cache

Content Headers

Content-Language

Content

en-US

Content-Length

Content

147

Content-Type

Content

text/html; charset=utf-8

content-language: en-US
content-length: 147
content-type: text/html; charset=utf-8

Server Headers

No server headers found

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: AMC-MS-CV=+WqOs+aaZUq7lJcU.0; expires=Wed, 25-Feb-2026 10:04:11 GMT; path=/; secure
MC1=GUID=5798db7ae6094c47b9a1d7f4b4fb10cc&HASH=5798&LV=202602&V=4&LU=1772012051112; domain=microsoft.com; expires=Thu, 25-Feb-2027 00:00:00 GMT; path=/; secure; HttpOnly
MSFPC=GUID=5798db7ae6094c47b9a1d7f4b4fb10cc&HASH=5798&LV=202602&V=4&LU=1772012051112; domain=account.microsoft.com; expires=Thu, 25-Feb-2027 00:00:00 GMT; path=/; secure; HttpOnly
GRNID=c0cfa803-5488-44aa-ba64-14816bf662ca; path=/; secure
canary=no; path=/; secure

Other Headers

Date

Other

Wed, 25 Feb 2026 09:34:11 GMT

Location

Other

https://account.microsoft.com/

P3p

Other

CAO DSP COR ADMa DEV CONo TELo CUR PSA PSD TAI IVDo OUR SAM BUS DEM NAV STA UNI COM INT PHY ONL FIN PRE PUR

X-Azure-Ref

Other

20260225T093411Z-16958c7f964ksjl9hC1CHI9qzc0000000e0g0000000037hz

X-Robots-Tag

Other

noindex

X-Served-By

Other

ZmHmka/JlFEgSsJjQvdnr4dHq+CfQcrJhXz4u+MVypLTqWJRtZqUK6H5Nj7Q9IHJ6jBHGOhyZKb4TdPKQjVGHg==::IS+23+WTboHm2U7omJazdQ==

X-Ua-Compatible

Other

IE=Edge

date: Wed, 25 Feb 2026 09:34:11 GMT
location: https://account.microsoft.com/
p3p: CAO DSP COR ADMa DEV CONo TELo CUR PSA PSD TAI IVDo OUR SAM BUS DEM NAV STA UNI COM INT PHY ONL FIN PRE PUR
x-azure-ref: 20260225T093411Z-16958c7f964ksjl9hC1CHI9qzc0000000e0g0000000037hz
x-robots-tag: noindex
x-served-by: ZmHmka/JlFEgSsJjQvdnr4dHq+CfQcrJhXz4u+MVypLTqWJRtZqUK6H5Nj7Q9IHJ6jBHGOhyZKb4TdPKQjVGHg==::IS+23+WTboHm2U7omJazdQ==
x-ua-compatible: IE=Edge

Recommendations

Enable compression (gzip/brotli) to improve performance