DNS Gurus
Cached · just now
22 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

1 headers
Connection
Performance
close

Caching Headers

0 headers
No caching headers found

Content Headers

2 headers
Content-Length
Content
23
Content-Type
Content
application/json

Server Headers

2 headers
Server
Server
Server
X-Powered-By
Server
Dart with package:shelf

CORS Headers

0 headers
No CORS headers found

Cookies Headers

0 headers
No cookies headers found

Other Headers

14 headers
Date
Other
Wed, 14 Jan 2026 11:55:15 GMT
Via
Other
1.1 onchain-enrichment-proxy
X-Amz-Apigw-Id
Other
XLGVmHuIiYcFfIw=
X-Amzn-Errortype
Other
ForbiddenException
X-Amzn-Requestid
Other
13081f7a-f1a9-4404-a4ff-edaf61515e1f
X-Auth-Is-Present
Other
false
X-Auth-Is-Valid
Other
false
X-Auth-User-Details
Other
{}
X-Auth-User-Id
Other
X-Auth-User-Permissions
Other
{}
X-Correlation-Group
Other
X-Correlation-Id
Other
VPCK6SyyQ9WzxQ1Sux2NqA
X-Feature-Flags
Other
{"frontend::dev-ops::flow::active-flow-outage:2023-06-21":false,"frontend::release::settings::toyken-integration::2023-06-30":false,"frontend::release::settings::guardian-control-v1::2023-06-30":false,"frontend::release::onboarding::user-display-name-optional::2023-07-12":true,"frontend::release::authentication::logout-single-device-renamed::2023-07-14":true,"frontend::release::backpack::amazon-benefit-redemption::2023-08-24":false,"global::disable-virtual-currencies::2023-10-31":false,"frontend::release::backpack::amazon-benefit-redemption-announcement::2023-11-01":false,"frontend::release::marketplace::toyken-on-the-web::2024-04-09":false,"frontend::release::settings::backpack-activity::2024-06-13":false,"frontend::dev-ops::maintenance::account-mgmt::app::2024-07-09":false,"frontend::dev-ops::maintenance::account-mgmt::teleportation::2024-07-09":false,"frontend::dev-ops::maintenance::auth::app::2024-07-09":false,"frontend::dev-ops::maintenance::marketing::app::2024-07-09":false,"frontend::dev-ops::maintenance::marketplace::app::2024-07-09":false,"frontend::dev-ops::maintenance::marketplace::toyken-purchase::2024-07-09":false,"frontend::dev-ops::maintenance::playground::app::2024-07-09":false,"frontend::dev-ops::maintenance::playground::teleportation::2024-07-09":false,"frontend::dev-ops::maintenance::playground::unboxing::2024-07-09":false,"frontend::release::data::update-user-response-modified::2024-07-19":true,"frontend::release::auth::age-verification::2024-07-19":false,"frontend::release::auth::app-v1::2024-07-19":true,"frontend::release::header::balance::2024-07-24":true,"frontend::release::data::signup-login-responses-modified::2024-09-03":true,"frontend::release::backpack::play-experience::2024-10-15":true,"frontend::release::settings::child-profiles::2024-10-09":false}
X-Masquerading-Is-Active
Other
false

Recommendations

Enable compression (gzip/brotli) to improve performance

Add Cache-Control header to optimize caching

Consider removing X-Powered-By header to hide server technology