DNS Gurus

SSL Verification Bypassed

The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.

Reason:

Unknown Certificate Authority - the server's certificate is not trusted

Cached · just now
24 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=63072000; includeSubDomains
Content-Security-Policy
Weak
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Missing
Not configured
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Significantly strengthen CSP directives
  • Consider adding Permissions-Policy to control browser features

Performance Headers

1 headers
Vary
Performance
Accept-Encoding

Caching Headers

2 headers
Cache-Control
Caching
max-age=0, private, must-revalidate
Etag
Caching
W/"dee7e6b855a65dd1d0b1aaf676232fca"

Content Headers

2 headers
Content-Length
Content
39576
Content-Type
Content
text/html; charset=utf-8

Server Headers

2 headers
Server
Server
Heroku
X-Runtime
Server
0.264838

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
_crowd_engine_session=mvU8WJA%2Blg9z8Huido%2FIyJX8MWV8eWJ7YHd%2F5F1%2BLFEZPGbbXA8XUzHBYTJl53JMVFaLDkRfm9yXiLX%2FW8I22%2Fm1IXzMxn%2BGLPaAnbDsw%2Bo92PJeBgDKVDl49OdREGc76ieKDfLw17mc0RlHxFVCs7tSi%2BU%2FE4mNd%2BbtKpE2H4mEUON4PytsW0BBK89CRaXwYZw%2FK7KCcHR5gZnDkl5LM%2FLxX%2Bbyldxqr4QAddEiZP4b0X6vXzaKmiM4TkPvEm7JpRZE8XPk8SuGC1PlrlPVQq7k7M3Z1%2BTKmGLM7Uo%3D--wh6qS2acjs4%2BBa9y--Qx0tiap3LcW1QMMNkmz25g%3D%3D; domain=app.m2crowd.com; path=/; secure; HttpOnly; SameSite=Lax

Other Headers

10 headers
Date
Other
Fri, 30 Jan 2026 23:18:13 GMT
Link
Other
<https://assets.ce-cdn.com/assets/base_theme-045223ec49ee182dd630469e00c02af590c2dc4fa3e7b85bf6e8082da43acf37.js>; rel=preload; as=script; nopush,<https://checkout.stripe.com/checkout.js>; rel=preload; as=script; nopush
Nel
Other
{"report_to":"heroku-nel","response_headers":["Via"],"max_age":3600,"success_fraction":0.01,"failure_fraction":0.1}
Report-To
Other
{"group":"heroku-nel","endpoints":[{"url":"https://nel.heroku.com/reports?s=KZcp4I6GPTVWGneJsGXEj1o1yL9REDziCUbWPZKKi6c%3D\u0026sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6\u0026ts=1769815092"}],"max_age":3600}
Reporting-Endpoints
Other
heroku-nel="https://nel.heroku.com/reports?s=KZcp4I6GPTVWGneJsGXEj1o1yL9REDziCUbWPZKKi6c%3D&sid=929419e7-33ea-4e2f-85f0-7d8b7cd5cbd6&ts=1769815092"
Via
Other
2.0 heroku-router
X-Download-Options
Other
noopen
X-Permitted-Cross-Domain-Policies
Other
none
X-Rack-Cors
Other
miss; no-origin
X-Request-Id
Other
fc22bf7e-cc41-d0cd-1a86-b77b398f63fa

Recommendations

Enable compression (gzip/brotli) to improve performance