HTTP Headers Analysis for https://amberstudent.com

Detected Technologies from Headers

See all in URL Inspect 26

Apple ID

AWS CloudFront

Baidu Analytics

Microsoft Advertising

Cloudflare CDNJS

Cloudinary

Facebook

Flourish

Google Analytics

Google API JS Client

Google Maps

Google Search

Google Static File Front End

Google Sign-In

Google Tag Manager

GrowthBook

Mapbox

Microsoft Clarity

Sentry

Snapchat

Stripe

TikTok Analytics

Trustpilot

Zendesk

Google Cloud

HTTP Security Headers

Status

Strict-Transport-Security

Excellent

max-age=31536000; includeSubDomains; preload

Content-Security-Policy

Basic

script-src; worker-src; child-src; +8 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

no-referrer

Permissions-Policy

Missing

Not configured

Recommendations

• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Vary

Performance

Accept-Encoding, Origin

connection: close
vary: Accept-Encoding, Origin

Caching Headers

Age

Caching

43378

Etag

Caching

W/"d5883-x0cWxrk9z9iu9kbbs7AKB22m86U"

age: 43378
etag: W/"d5883-x0cWxrk9z9iu9kbbs7AKB22m86U"

Content Headers

Content-Length

Content

874627

Content-Type

Content

text/html; charset=utf-8

content-length: 874627
content-type: text/html; charset=utf-8

Server Headers

Server

CloudFront

server: CloudFront

CORS Headers

No CORS headers found

Cookies Headers

No cookies headers found

Other Headers

Date

Other

Tue, 05 May 2026 07:21:11 GMT

Origin-Agent-Cluster

Other

?1

Via

Other

1.1 cf7e8b3887a490b60a55be14eb004b54.cloudfront.net (CloudFront)

X-Amz-Cf-Id

Other

w9l1g2ayroLOIHOhi5iLIHk9Uq9BmHhA-BVN5KlSiqd9_AfBJydmbw==

X-Amz-Cf-Pop

Other

IAD55-P5

X-Cache

Other

Hit from cloudfront

X-Dns-Prefetch-Control

Other

off

X-Download-Options

Other

noopen

X-Permitted-Cross-Domain-Policies

Other

none

X-Redis-Cache

Other

MISS

X-Redis-Data-Cache

Other

MISS

date: Tue, 05 May 2026 07:21:11 GMT
origin-agent-cluster: ?1
via: 1.1 cf7e8b3887a490b60a55be14eb004b54.cloudfront.net (CloudFront)
x-amz-cf-id: w9l1g2ayroLOIHOhi5iLIHk9Uq9BmHhA-BVN5KlSiqd9_AfBJydmbw==
x-amz-cf-pop: IAD55-P5
x-cache: Hit from cloudfront
x-dns-prefetch-control: off
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-redis-cache: MISS
x-redis-data-cache: MISS

Recommendations

Enable compression (gzip/brotli) to improve performance

Add Cache-Control header to optimize caching