Open
Cached
·
just now
18
Headers
Detected Technologies from Headers
Criteo
Google Tag Manager
Bing
Google reCAPTCHA
ShareThrough
Google Cloud Run
Amplitude
AppNexus (Xandr)
AppsFlyer
Reddit
Yahoo
Statuspage
HubSpot Forms
Envoy
HubSpot Feedback & Surveys
Google DoubleClick
Google Analytics
Crazy Egg
Google Conversion Tracking
Adobe Audience Manager
Segment
Cloudflare CDN
Datadog
Typeform
Google Cloud Storage
Google Static File Front End
Outbrain
Next.js
TikTok Analytics
Google Fonts
Twitter
G Workspace
Hotjar
LinkedIn
PubMatic
Zendesk
Contentful
HubSpot Analytics
Teads
Yieldmo
Google Search
Facebook
Matomo
TripleLift
Taboola
Rubicon Project
Visual Website Optimizer
HubSpot
HubSpot Live Chat
Google Cloud
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=31536000; includeSubDomains; preload
X-Frame-Options
Excellent
DENY
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer
Permissions-Policy
Present
microphone=(), usb=()
Recommendations
- • Significantly strengthen CSP directives
Performance Headers
Connection
close
Transfer-Encoding
chunked
Vary
Accept-Encoding
connection: close transfer-encoding: chunked vary: Accept-Encoding
Caching Headers
Cache-Control
private, no-cache, no-store, max-age=0, must-revalidate
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
Content Headers
Content-Type
text/html; charset=utf-8
content-type: text/html; charset=utf-8
Server Headers
Server
cloudflare
X-Powered-By
Next.js
server: cloudflare x-powered-by: Next.js
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Cf-Cache-Status
DYNAMIC
Cf-Ray
9f6ced6a5871e5f8-IAD
Date
Tue, 05 May 2026 04:16:01 GMT
X-Envoy-Upstream-Service-Time
3
cf-cache-status: DYNAMIC cf-ray: 9f6ced6a5871e5f8-IAD date: Tue, 05 May 2026 04:16:01 GMT x-envoy-upstream-service-time: 3
Recommendations
Enable compression (gzip/brotli) to improve performance
Consider removing X-Powered-By header to hide server technology