DNS Gurus
Cached · just now
21 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31536000; includeSubdomains
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

Connection
Performance
close

Caching Headers

Cache-Control
Caching
must-revalidate,no-cache,no-store

Content Headers

Content-Length
Content
47
Content-Type
Content
application/json;charset=iso-8859-1

Server Headers

Server
Server
Apple

CORS Headers

No CORS headers found

Cookies Headers

No cookies headers found

Other Headers

Apple-Originating-System
Other
MZAuth
Apple-Seq
Other
0.0
Apple-Tk
Other
false
B3
Other
bbf48836e89c9701d637809c0ee1df59-3515a7f3ecfeed1b
Date
Other
Thu, 02 Apr 2026 21:13:48 GMT
X-Apple-Jingle-Correlation-Key
Other
XP2IQNXITSLQDVRXQCOA5YO7LE
X-Apple-Request-Uuid
Other
bbf48836-e89c-9701-d637-809c0ee1df59
X-B3-Spanid
Other
3515a7f3ecfeed1b
X-B3-Traceid
Other
bbf48836e89c9701d637809c0ee1df59
X-Daiquiri-Debug-Worker-Pid
Other
50437
X-Daiquiri-Instance
Other
daiquiri:41787001:st53p00it-qujn12040502:7987:26RELEASE56:daiquiri-amp-commerce-l7services-int-003-st
X-Responding-Instance
Other
MZAuth:20004:::

Recommendations

Enable compression (gzip/brotli) to improve performance