Open
Cached
·
just now
21
Headers
Detected Technologies from Headers
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
geolocation=(), microphone=(), camera=()
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Strengthen CSP by removing 'unsafe-eval'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
Performance Headers
Accept-Ranges
bytes
Connection
close
Content-Encoding
gzip
accept-ranges: bytes connection: close content-encoding: gzip
Caching Headers
Etag
"1c45d0043368d6052064e850aae04dd5"
Last-Modified
Fri, 08 May 2026 15:41:46 GMT
etag: "1c45d0043368d6052064e850aae04dd5" last-modified: Fri, 08 May 2026 15:41:46 GMT
Content Headers
Content-Encoding
gzip
Content-Length
2878
Content-Type
text/html; charset=UTF-8
content-encoding: gzip content-length: 2878 content-type: text/html; charset=UTF-8
Server Headers
Server
AmazonS3
server: AmazonS3
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Sat, 09 May 2026 14:26:35 GMT
Via
1.1 9c1af7d3a65188bbe2a887e923707784.cloudfront.net (CloudFront)
X-Amz-Cf-Id
yf4F20kvJo3pYgjRWkJtE4c2m4QbE209TqMXUA_JaXjWKxRqAqnZhQ==
X-Amz-Cf-Pop
ORD56-P15
X-Amz-Meta-Etag
HEXQBDNo1gUgZOhQquBN1Q==
X-Amz-Server-Side-Encryption
AES256
X-Amz-Version-Id
_VP3Zyv33lrADaCLKxcXFKDvTOdSl.O3
X-Cache
Miss from cloudfront
date: Sat, 09 May 2026 14:26:35 GMT via: 1.1 9c1af7d3a65188bbe2a887e923707784.cloudfront.net (CloudFront) x-amz-cf-id: yf4F20kvJo3pYgjRWkJtE4c2m4QbE209TqMXUA_JaXjWKxRqAqnZhQ== x-amz-cf-pop: ORD56-P15 x-amz-meta-etag: HEXQBDNo1gUgZOhQquBN1Q== x-amz-server-side-encryption: AES256 x-amz-version-id: _VP3Zyv33lrADaCLKxcXFKDvTOdSl.O3 x-cache: Miss from cloudfront
Recommendations
Add Cache-Control header to optimize caching