HTTP Headers Analysis for https://amsoil.ca

Detected Technologies from Headers

See all in URL Inspect 34

PayPal

Google AdSense

Google Maps Criteo

Google Tag Manager

Amazon Advertising

Microsoft Azure

DocuSign

Google DoubleClick

Google Analytics Microsoft Advertising

Google Conversion Tracking

Cloudflare CDN

Google Static File Front End

Wistia Qualtrics

Hotjar

LinkedIn Salesforce Personalization

ZoomInfo

Cloudflare Turnstile

Google Search

Apple ID

Facebook

Amazon S3

OneTrust

Cloudflare CDNJS MNTN

TrustArc ipify

Google Optimize

Optimizely

Sentry

Google Cloud

HTTP Security Headers

Status

Strict-Transport-Security

Good

max-age=31536000; includeSubDomains

Content-Security-Policy

Basic

script-src; frame-src; frame-ancestors; +1 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Present

same-origin

Permissions-Policy

Present

accelerometer=(), browsing-topics=(), camera=(); +14 more

Recommendations

• Consider adding 'preload' to HSTS for maximum security
• Improve CSP by adding more specific directives and removing 'unsafe-inline'

Performance Headers

Connection

Performance

close

connection: close

Caching Headers

Cache-Control

Caching

private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0

Expires

Caching

Thu, 01 Jan 1970 00:00:01 GMT

cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT

Content Headers

Content-Length

Content

6956

Content-Type

Content

text/html; charset=UTF-8

content-length: 6956
content-type: text/html; charset=UTF-8

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: __cf_bm=.f64WDgKoiR4KVNv.8X2Y_mcRjhhuMb7.W8mpTcNgs0-1771451113-1.0.1.1-gT1NdAHbT9hF7_gaR4KOWyIcx9R_Olncm.CVEzjA.ajKlVIZ6pqCkSvcvpwzis_UrSyvBWSM37dIMAE6Uj23T5MG6..Rrn5D098nmaiGgG9tnwIiF9yem4WqFsw26Pzv; path=/; expires=Wed, 18-Feb-26 22:15:13 GMT; domain=.amsoil.ca; HttpOnly; Secure; SameSite=None

Other Headers

Accept-Ch

Other

Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA

Cf-Mitigated

Other

challenge

Cf-Ray

Other

9d00b5d62996ec0a-IAD

Critical-Ch

Other

Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA

Date

Other

Wed, 18 Feb 2026 21:45:13 GMT

Origin-Agent-Cluster

Other

?1

Server-Timing

Other

chlray;desc="9d00b5d62996ec0a"

accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
cf-ray: 9d00b5d62996ec0a-IAD
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
date: Wed, 18 Feb 2026 21:45:13 GMT
origin-agent-cluster: ?1
server-timing: chlray;desc="9d00b5d62996ec0a"

Recommendations

Enable compression (gzip/brotli) to improve performance