Open
Cached
·
just now
21
Headers
Detected Technologies from Headers
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
geolocation=(), microphone=(), camera=()
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Strengthen CSP by removing 'unsafe-eval'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
Performance Headers
Accept-Ranges
bytes
Connection
close
Content-Encoding
gzip
accept-ranges: bytes connection: close content-encoding: gzip
Caching Headers
Etag
"20e2fe3a7f4a2ea8f3fc34e683487505"
Last-Modified
Tue, 05 May 2026 22:37:37 GMT
etag: "20e2fe3a7f4a2ea8f3fc34e683487505" last-modified: Tue, 05 May 2026 22:37:37 GMT
Content Headers
Content-Encoding
gzip
Content-Length
2876
Content-Type
text/html; charset=UTF-8
content-encoding: gzip content-length: 2876 content-type: text/html; charset=UTF-8
Server Headers
Server
AmazonS3
server: AmazonS3
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Wed, 06 May 2026 16:06:08 GMT
Via
1.1 1103f2f4fcd4848a1668ac878932c20a.cloudfront.net (CloudFront)
X-Amz-Cf-Id
Rs9eH2RXlXq-KmSOKoNI7pWahg3_rFDPl9t2_cMESwhlR3sTIrzLUA==
X-Amz-Cf-Pop
IAD55-P5
X-Amz-Meta-Etag
IOL+On9KLqjz/DTmg0h1BQ==
X-Amz-Server-Side-Encryption
AES256
X-Amz-Version-Id
LEOaguVobjlwJhAZ0NmRcdZbZ4408JES
X-Cache
Miss from cloudfront
date: Wed, 06 May 2026 16:06:08 GMT via: 1.1 1103f2f4fcd4848a1668ac878932c20a.cloudfront.net (CloudFront) x-amz-cf-id: Rs9eH2RXlXq-KmSOKoNI7pWahg3_rFDPl9t2_cMESwhlR3sTIrzLUA== x-amz-cf-pop: IAD55-P5 x-amz-meta-etag: IOL+On9KLqjz/DTmg0h1BQ== x-amz-server-side-encryption: AES256 x-amz-version-id: LEOaguVobjlwJhAZ0NmRcdZbZ4408JES x-cache: Miss from cloudfront
Recommendations
Add Cache-Control header to optimize caching