DNS Gurus
Cached · 9m ago
22 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains
Content-Security-Policy
Weak
frame-ancestors
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Significantly strengthen CSP directives
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers
Accept-Ranges
Performance
bytes
Vary
Performance
Accept-Encoding,User-Agent,Origin

Caching Headers

4 headers
Age
Caching
307
Cache-Control
Caching
max-age=60, public
Etag
Caching
"4e8b7b2f"
Last-Modified
Caching
Wed, 14 Jan 2026 01:04:39 GMT

Content Headers

2 headers
Content-Length
Content
322627
Content-Type
Content
text/html;charset=utf-8

Server Headers

1 headers
Server
Server
Apache

CORS Headers

3 headers
Access-Control-Allow-Headers
Cors
x-requested-with, Content-Type, Origin, authorization, accept, client-security-token
Access-Control-Allow-Methods
Cors
POST, GET, OPTIONS
Access-Control-Max-Age
Cors
1000

Cookies Headers

1 headers
Set-Cookie
Cookies
incap_ses_1700_1539045=vJ77DrdaXiPslROrmp2XFx8PZ2kAAAAAisiI/Gc0k/1ygGZYrNeEZg==; path=/; Domain=.anz.com.au; Secure; SameSite=None

Other Headers

5 headers
Date
Other
Wed, 14 Jan 2026 03:35:59 GMT
X-Cdn
Other
Imperva
X-Dispatcher
Other
dispatcher2apsoutheast2-28464335
X-Iinfo
Other
55-270700749-0 0cNN RT(1768361760184 9) q(0 -1 -1 1) r(0 -1)
X-Vhost
Other
publish

Recommendations

Enable compression (gzip/brotli) to improve performance