HTTP Headers Analysis for https://assets.pearsonpte.com

Detected Technologies from Headers

See all in URL Inspect 1

AWS CloudFront

HTTP Security Headers

Status

Strict-Transport-Security

Good

max-age=31536000; includeSubDomains

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Excellent

DENY

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Consider adding 'preload' to HSTS for maximum security
• Add Content-Security-Policy header to prevent XSS attacks
• Consider adding Permissions-Policy to control browser features

Performance Headers

Accept-Ranges

Performance

bytes

Connection

Performance

close

Vary

Performance

Accept-Encoding, Origin

accept-ranges: bytes
connection: close
vary: Accept-Encoding, Origin

Caching Headers

Age

Caching

187

Cache-Control

Caching

max-age=900, public

Etag

Caching

"24bae-65035c5dc6f1c"

Last-Modified

Caching

Fri, 24 Apr 2026 14:42:23 GMT

Pragma

Caching

no-cache

age: 187
cache-control: max-age=900, public
etag: "24bae-65035c5dc6f1c"
last-modified: Fri, 24 Apr 2026 14:42:23 GMT
pragma: no-cache

Content Headers

Content-Length

Content

150446

Content-Type

Content

text/html

content-length: 150446
content-type: text/html

Server Headers

Server

Pearson

server: Pearson

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: AWSALB=MtX2Ve7vHqRSDgZfkDXx+q16P7UuA+tp/yxiRL0/nMCpO6YPq2QJ78DiHJFUI6FMBJLhJFUyD6XofxlKtnLLmalajNJVngXytONobpL0+xx60e4GYFV5x0JsLfDY; Expires=Sun, 03 May 2026 16:07:42 GMT; Path=/
AWSALBCORS=MtX2Ve7vHqRSDgZfkDXx+q16P7UuA+tp/yxiRL0/nMCpO6YPq2QJ78DiHJFUI6FMBJLhJFUyD6XofxlKtnLLmalajNJVngXytONobpL0+xx60e4GYFV5x0JsLfDY; Expires=Sun, 03 May 2026 16:07:42 GMT; Path=/; SameSite=None; Secure

Other Headers

Cloudfront-Viewer-Country

Other

US

Cloudfront-Viewer-Country-Name

Other

United States

Cloudfront-Viewer-Country-Region

Other

VA

Cloudfront-Viewer-Country-Region-Name

Other

Virginia

Date

Other

Sun, 26 Apr 2026 16:07:42 GMT

Via

Other

1.1 05133180bbd1649d4b8f97441bf305e8.cloudfront.net (CloudFront)

X-Amz-Cf-Id

Other

zfuNbh4gwI1usZPVGBHO394BgenF5by4yWcM1M_0tdJbT5_niMND7A==

X-Amz-Cf-Pop

Other

IAD12-P3

X-Cache

Other

Hit from cloudfront

cloudfront-viewer-country: US
cloudfront-viewer-country-name: United States
cloudfront-viewer-country-region: VA
cloudfront-viewer-country-region-name: Virginia
date: Sun, 26 Apr 2026 16:07:42 GMT
via: 1.1 05133180bbd1649d4b8f97441bf305e8.cloudfront.net (CloudFront)
x-amz-cf-id: zfuNbh4gwI1usZPVGBHO394BgenF5by4yWcM1M_0tdJbT5_niMND7A==
x-amz-cf-pop: IAD12-P3
x-cache: Hit from cloudfront

Recommendations

Enable compression (gzip/brotli) to improve performance