Open
Cached
·
just now
14
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
1 headers
Connection
Performance
close
Caching Headers
1 headers
Cache-Control
Caching
private
Content Headers
2 headers
Content-Length
Content
2705
Content-Type
Content
text/html; charset=utf-8
Server Headers
4 headers
Server
Server
Microsoft-IIS/8.5
X-Aspnet-Version
Server
4.0.30319
X-Aspnetmvc-Version
Server
5.2
X-Powered-By
Server
ASP.NET
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
.RS_2082464971=Language94181A4FEAC14507enB1D76B1A422B3147Theme94181A4FEAC14507Computool_GrayB1D76B1A422B3147IsPersistant94181A4FEAC14507FalseB1D76B1A422B3147SharingHashCode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path=/; HttpOnly
Other Headers
5 headers
Date
Other
Wed, 04 Feb 2026 04:30:32 GMT
Gen-Time
Other
0.002
Net-Diag
Other
WIN-6TJ5GDLAOSE
Redirect_url
Other
https://app.sennms.com:443/crm/Account/Login
Requires_auth
Other
1
Recommendations
Enable compression (gzip/brotli) to improve performance
Consider removing X-Powered-By header to hide server technology