HTTP Headers Analysis for https://appsbeta.xactcontents.com

Detected Technologies from Headers

See all in URL Inspect 2

Imperva

Microsoft IIS

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=604800;

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

connection: close
transfer-encoding: chunked

Caching Headers

No caching headers found

Content Headers

Content-Type

Content

text/html

content-type: text/html

Server Headers

Server

Microsoft-IIS/10.0

server: Microsoft-IIS/10.0

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: AWSALB=JbfOdY+CWxkgWBJBS5Kv+p9WvtMFXaO3GHmX/kzjEJqNnsu5OoHNk8+/XQ8tXRfjOWW5IAdxHjwZaeTYl2rzA5yiiTszm7Des2hd3W2Bk8h5/72qtmbBNAJSuCUj; Expires=Tue, 24 Feb 2026 06:44:05 GMT; Path=/
AWSALBCORS=JbfOdY+CWxkgWBJBS5Kv+p9WvtMFXaO3GHmX/kzjEJqNnsu5OoHNk8+/XQ8tXRfjOWW5IAdxHjwZaeTYl2rzA5yiiTszm7Des2hd3W2Bk8h5/72qtmbBNAJSuCUj; Expires=Tue, 24 Feb 2026 06:44:05 GMT; Path=/; SameSite=None; Secure
dtCookie=v_4_srv_4_sn_3B7E5C4FD7EC1DC66CDC31983E25F3A6_perc_100000_ol_0_mul_1_app-3A217251fa8d3d8ecf_1_rcs-3Acss_1; Path=/; Domain=.xactcontents.com
visid_incap_1631293=ogq6hzrGQ02DPz2HkRMsvjQOlGkAAAAAQUIPAAAAAABn+blBwo0GQ23GXl4bwrmb; expires=Tue, 16 Feb 2027 07:03:20 GMT; HttpOnly; path=/; Domain=.xactcontents.com
nlbi_1631293=Y0X+HAq64SUOpm7TFRGgcgAAAACvVMQrZ2isnzVKUzGHV1R3; HttpOnly; path=/; Domain=.xactcontents.com
incap_ses_1842_1631293=0sugCoReGXptaqRz5RmQGTQOlGkAAAAAySKOhKjgXiOcUksHIO/m0g==; path=/; Domain=.xactcontents.com

Other Headers

Date

Other

Tue, 17 Feb 2026 06:44:05 GMT

Server-Timing

Other

dtSInfo;desc="0", dtRpid;desc="1834768487"

X-Cdn

Other

Imperva

X-Iinfo

Other

54-104004601-104004603 NNNN CT(76 153 0) RT(1771310645485 5) q(0 0 2 0) r(3 3) U11

X-Oneagent-Js-Injection

Other

true

X-Ruxit-Js-Agent

Other

true

date: Tue, 17 Feb 2026 06:44:05 GMT
server-timing: dtSInfo;desc="0", dtRpid;desc="1834768487"
x-cdn: Imperva
x-iinfo: 54-104004601-104004603 NNNN CT(76 153 0) RT(1771310645485 5) q(0 0 2 0) r(3 3) U11
x-oneagent-js-injection: true
x-ruxit-js-agent: true

Recommendations

Enable compression (gzip/brotli) to improve performance

Add Cache-Control header to optimize caching