HTTP Headers Analysis for https://app.teampay.co

Detected Technologies from Headers

See all in URL Inspect 28

Gravatar

Amazon S3

Chameleon

ClearBit

Cloudflare Active incidents

Cloudflare CDN

Drift

Google Analytics

Google API JS Client

Google DoubleClick

Google Search

Google Static File Front End

Google Tag Manager

Hotjar

HubSpot

HubSpot Analytics

jsDelivr

Microsoft 365

Mixpanel

Plaid

Segment

Sentry

Slack

unpkg

WordPress

Zendesk

Google Cloud

Google Cloud Storage

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=3600; includeSubDomains

Content-Security-Policy

Basic

media-src; default-src; style-src-elem; +13 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Excellent

DENY

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Present

same-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Vary

Performance

Cookie, origin

connection: close
vary: Cookie, origin

Caching Headers

No caching headers found

Content Headers

Content-Length

Content

11388

Content-Type

Content

text/html; charset=utf-8

content-length: 11388
content-type: text/html; charset=utf-8

Server Headers

No server headers found

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: csrftoken=vcUFMo7D1cfv7Aa8yrlj22cWc9TMqzyF; expires=Wed, 05 May 2027 20:41:51 GMT; Max-Age=31449600; Path=/; SameSite=None; Secure

Other Headers

Date

Other

Wed, 06 May 2026 20:41:51 GMT

date: Wed, 06 May 2026 20:41:51 GMT

Recommendations

Enable compression (gzip/brotli) to improve performance

Add Cache-Control header to optimize caching