DNS Gurus
Open Cached · just now
16 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-ua-platform-version=(self "https://v1.mychips.io" "https://v1-staging.mychips.io" "https://pixel.myappfree.com" "https://trk301.com"), ch-ua=(self "https://v1.mychips.io" "https://v1-staging.mychips.io" "https://pixel.myappfree.com" "https://trk301.com"), ch-ua-mobile=(self "https://v1.mychips.io" "https://v1-staging.mychips.io" "https://pixel.myappfree.com" "https://trk301.com"), ch-ua-platform=(self "https://v1.mychips.io" "https://v1-staging.mychips.io" "https://pixel.myappfree.com" "https://trk301.com"), ch-ua-arch=(self "https://v1.mychips.io" "https://v1-staging.mychips.io" "https://pixel.myappfree.com" "https://trk301.com"), ch-ua-model=(self "https://v1.mychips.io" "https://v1-staging.mychips.io" "https://pixel.myappfree.com" "https://trk301.com"), ch-ua-full-version-list=(self "https://v1.mychips.io" "https://v1-staging.mychips.io" "https://pixel.myappfree.com" "https://trk301.com"), ch-ua-bitness=(self "https://v1.mychips.io" "https://v1-staging.mychips.io" "https://pixel.myappfree.com" "https://trk301.com")
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)

Performance Headers

2 headers
Connection
Performance
close
Transfer-Encoding
Performance
chunked

Caching Headers

3 headers
Cache-Control
Caching
no-cache, no-store, must-revalidate, max-age=0
Expires
Caching
0
Pragma
Caching
no-cache

Content Headers

1 headers
Content-Type
Content
text/plain; charset=utf-8

Server Headers

1 headers
Server
Server
Kestrel

CORS Headers

0 headers
No CORS headers found

Cookies Headers

0 headers
No cookies headers found

Other Headers

8 headers
Accept-Ch
Other
Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness
Alt-Svc
Other
h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Api-Supported-Versions
Other
1.0
Critical-Ch
Other
Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness
Date
Other
Sat, 13 Dec 2025 06:02:10 GMT
Delegate-Ch
Other
Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Bitness
Via
Other
1.1 google
X-Correlation-Id
Other
ff0e0acf-6e6c-4bbb-a684-37edfb74a1e3

Recommendations

Enable compression (gzip/brotli) to improve performance

Analysis completed in 147ms