HTTP Headers Analysis for https://bitsight.com

Open Cached · just now

32 Headers

Detected Technologies from Headers

See all in URL Inspect 6

Cloudflare CDN

Drupal

Font Awesome

Google Fonts

New Relic

Varnish

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=2592000; includeSubDomains

Content-Security-Policy

Weak

report-uri Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

no-referrer-when-downgrade

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Significantly strengthen CSP directives
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

Transfer-Encoding

Performance

chunked

Vary

Performance

Cookie,Accept-Encoding

connection: close
transfer-encoding: chunked
vary: Cookie,Accept-Encoding

Caching Headers

Age

Caching

59162

Cache-Control

Caching

max-age=31536000, public

Expires

Caching

Sun, 19 Nov 1978 05:00:00 GMT

Last-Modified

Caching

Wed, 06 May 2026 17:01:24 GMT

age: 59162
cache-control: max-age=31536000, public
expires: Sun, 19 Nov 1978 05:00:00 GMT
last-modified: Wed, 06 May 2026 17:01:24 GMT

Content Headers

Content-Language

Content

Content-Type

Content

text/html; charset=UTF-8

content-language: en
content-type: text/html; charset=UTF-8

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

set-cookie: _cfuvid=EMaqfPbj7KC2pWKY5eA6GSTNLXIPZRjN6GfYMh56Nhk-1778146048.9482448-1.0.1.1-nxR.mpai6qQdWPDnyI1QVjhj9D7OR1duPC.UQtVocIo; HttpOnly; SameSite=None; Secure; Path=/; Domain=bitsight.com

Other Headers

Cf-Cache-Status

Other

DYNAMIC

Cf-Ray

Other

9f7f3065ebd1e5e7-IAD

Date

Other

Thu, 07 May 2026 09:27:28 GMT

Link

Other

URL analytics.google.com

rel=dns-prefetch

URL js.driftt.com

rel=dns-prefetch

URL rackingapi.trendemon.com

rel=dns-prefetch

URL tags.srv.stackadapt.com

rel=dns-prefetch

URL analytics.google.com

rel=dns-prefetch

URL js.driftt.com

rel=dns-prefetch

URL rackingapi.trendemon.com

rel=dns-prefetch

URL tags.srv.stackadapt.com

rel=dns-prefetch

URL cdn.optimizely.com

rel=dns-prefetch

URL js.hs-scripts.com

rel=dns-prefetch

URL logx.optimizely.com

rel=dns-prefetch

URL metrics.hotjar.io

rel=dns-prefetch

URL bootstrap.driftapi.com

rel=dns-prefetch

URL

ka-p.fontawesome.com

rel=dns-prefetch

URL audioeye.com

rel=dns-prefetch

URL googletagmanager.com

rel=dns-prefetch

URL permutive.com

rel=dns-prefetch

URL hotjar.com

rel=dns-prefetch

URL analytics.google.com

rel=preconnect

URL js.driftt.com

rel=preconnect

URL rackingapi.trendemon.com

rel=preconnect

URL consent.trustarc.com

rel=preconnect

URL cdn.optimizely.com

rel=preconnect

URL js.hs-scripts.com

rel=preconnect

URL metrics.hotjar.io

rel=preconnect

URL logx.optimizely.com

rel=preconnect

URL bootstrap.driftapi.com

rel=preconnect

URL

ka-p.fontawesome.com

rel=preconnect

URL tags.srv.stackadapt.com

rel=preconnect

URL audioeye.com

rel=preconnect

URL googletagmanager.com

rel=preconnect

URL permutive.com

rel=preconnect

URL hotjar.com

rel=preconnect

URL

https://fonts.gstatic.com/s/lato/v22/S6uyw4BMUTPHjx4wXiWtFCc.woff2

rel=prefetch

URL

https://ka-p.fontawesome.com/releases/v6.5.2/webfonts/pro-fa-light-300-0.woff2

rel=prefetch

URL

https://fonts.gstatic.com/s/lato/v22/S6uyw4BMUTPHjx4wXiWtFCc.woff2

rel=prefetch

URL

https://kit.fontawesome.com/bc8e4d7021.js

rel=prerender

URL

https://js-agent.newrelic.com/nr-rum-1.255.0.min.js

rel=prerender

Server-Timing

Other

cfCacheStatus;desc="DYNAMIC", cfEdge;dur=5,cfOrigin;dur=5

Surrogate-Key

Other

tilu alec 15nq bh81 bgfh t5be 1p3d 1rv1 lira 4iqj 4n5i 2h09 k5im lgqj 7bmp epgs ffa2 ia8m tapm s1so d7d6 ka5u 1toc jigk 9pcm 1971 6ehj gaf3 n8q3 knej sheu khoj cj78 vja0 78t5 6dsl ldc7 snk9 tib3 rjqv tjhs n16q 4ind rl04 p93v vcdf e79l nksc gsd9 keo3 nl66 jro7 in6f 51hc iitd 61e5 1cn6 1o2d vo2s nn04 8u16 h29v t0jl b0cp 17po p0q4 nlvr fggr 5u1f q9uk 8v78 gt0u e8aq bf7j aur3 ooeu kivj lh3s 39s3 2tqn tmg7 5050 hg31 07kv c5ue vl8b fks9 ec8b h8u0 cr77 jh59 gv7m nl94 tsk3 darg 7ssp i1hh m4ma 704t l0o5 ebeg 601f kfqg 8pfg h0lf odpm om9v rtvo hsnl eit7 ig0p rlbd 3trs ng8p 5rco vq51 oauf snab trke e1j3

Via

Other

varnish

X-Ah-Environment

Other

prod

X-Cache

Other

HIT

X-Cache-Hits

Other

6886

X-Dns-Prefetch-Control

Other

X-Drupal-Cache

Other

HIT

X-Drupal-Dynamic-Cache

Other

MISS

X-Generator

Other

Drupal 10 (https://www.drupal.org)

X-Request-Id

Other

v-37b31592-496d-11f1-bf5a-bfde76674b1e

cf-cache-status: DYNAMIC
cf-ray: 9f7f3065ebd1e5e7-IAD
date: Thu, 07 May 2026 09:27:28 GMT
link: <analytics.google.com>; rel="dns-prefetch", <js.driftt.com>; rel="dns-prefetch", <rackingapi.trendemon.com>; rel="dns-prefetch", <tags.srv.stackadapt.com>; rel="dns-prefetch", <cdn.optimizely.com>; rel="dns-prefetch", <js.hs-scripts.com>; rel="dns-prefetch", <logx.optimizely.com>; rel="dns-prefetch", <metrics.hotjar.io>; rel="dns-prefetch", <bootstrap.driftapi.com>; rel="dns-prefetch", <ka-p.fontawesome.com>; rel="dns-prefetch", <audioeye.com>; rel="dns-prefetch", <googletagmanager.com>; rel="dns-prefetch", <permutive.com>; rel="dns-prefetch", <hotjar.com>; rel="dns-prefetch", <analytics.google.com>; rel="preconnect", <js.driftt.com>; rel="preconnect", <rackingapi.trendemon.com>; rel="preconnect", <consent.trustarc.com>; rel="preconnect", <cdn.optimizely.com>; rel="preconnect", <js.hs-scripts.com>; rel="preconnect", <metrics.hotjar.io>; rel="preconnect", <logx.optimizely.com>; rel="preconnect", <bootstrap.driftapi.com>; rel="preconnect", <ka-p.fontawesome.com>; rel="preconnect", <tags.srv.stackadapt.com>; rel="preconnect", <audioeye.com>; rel="preconnect", <googletagmanager.com>; rel="preconnect", <permutive.com>; rel="preconnect", <hotjar.com>; rel="preconnect", <https://fonts.gstatic.com/s/lato/v22/S6uyw4BMUTPHjx4wXiWtFCc.woff2>; rel="prefetch", <https://ka-p.fontawesome.com/releases/v6.5.2/webfonts/pro-fa-light-300-0.woff2>; rel="prefetch", <https://fonts.gstatic.com/s/lato/v22/S6uyw4BMUTPHjx4wXiWtFCc.woff2>; rel="prefetch", <https://kit.fontawesome.com/bc8e4d7021.js>; rel="prerender", <https://js-agent.newrelic.com/nr-rum-1.255.0.min.js>; rel="prerender"
server-timing: cfCacheStatus;desc="DYNAMIC", cfEdge;dur=5,cfOrigin;dur=5
surrogate-key: tilu alec 15nq bh81 bgfh t5be 1p3d 1rv1 lira 4iqj 4n5i 2h09 k5im lgqj 7bmp epgs ffa2 ia8m tapm s1so d7d6 ka5u 1toc jigk 9pcm 1971 6ehj gaf3 n8q3 knej sheu khoj cj78 vja0 78t5 6dsl ldc7 snk9 tib3 rjqv tjhs n16q 4ind rl04 p93v vcdf e79l nksc gsd9 keo3 nl66 jro7 in6f 51hc iitd 61e5 1cn6 1o2d vo2s nn04 8u16 h29v t0jl b0cp 17po p0q4 nlvr fggr 5u1f q9uk 8v78 gt0u e8aq bf7j aur3 ooeu kivj lh3s 39s3 2tqn tmg7 5050 hg31 07kv c5ue vl8b fks9 ec8b h8u0 cr77 jh59 gv7m nl94 tsk3 darg 7ssp i1hh m4ma 704t l0o5 ebeg 601f kfqg 8pfg h0lf odpm om9v rtvo hsnl eit7 ig0p rlbd 3trs ng8p 5rco vq51 oauf snab trke e1j3
via: varnish
x-ah-environment: prod
x-cache: HIT
x-cache-hits: 6886
x-dns-prefetch-control: on
x-drupal-cache: HIT
x-drupal-dynamic-cache: MISS
x-generator: Drupal 10 (https://www.drupal.org)
x-request-id: v-37b31592-496d-11f1-bf5a-bfde76674b1e

Recommendations

Enable compression (gzip/brotli) to improve performance