Open
Cached
·
just now
28
Headers
Detected Technologies from Headers
AWS CloudFront
Bing
Microsoft Advertising
Chili Piper
Active incidents
CookieYes
Drupal
Google AdSense
Google Analytics
Google Conversion Tracking
Google DoubleClick
Google Fonts
Google Search
Google Static File Front End
Google Tag Manager
Hotjar
Intellimize (Webflow)
ipify
jsDelivr
LinkedIn
Microsoft Clarity
Nginx
Oktopost
Quora
Reddit
Active incidents
Salesforce Pardot
SalesLoft
Sentry
Wistia
YouTube
ZoomInfo
Google Cloud
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Accept-Ranges
bytes
Connection
close
Vary
Cookie, Accept-Encoding
accept-ranges: bytes connection: close vary: Cookie, Accept-Encoding
Caching Headers
Age
76743
Cache-Control
max-age=2764800, public
Etag
W/"1778230804-gzip"
Expires
Sun, 19 Nov 1978 05:00:00 GMT
Last-Modified
Fri, 08 May 2026 09:00:04 GMT
age: 76743 cache-control: max-age=2764800, public etag: W/"1778230804-gzip" expires: Sun, 19 Nov 1978 05:00:00 GMT last-modified: Fri, 08 May 2026 09:00:04 GMT
Content Headers
Content-Language
en
Content-Length
104969
Content-Type
text/html; charset=UTF-8
content-language: en content-length: 104969 content-type: text/html; charset=UTF-8
Server Headers
Server
nginx
server: nginx
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Sat, 09 May 2026 06:19:18 GMT
Via
Acquia Platform CDN 1.244
X-Acquia-View
1
X-Ah-Environment
prod
X-Cache
HIT, HIT
X-Cache-Hits
170, 0
X-Content-Security-Policy
default-src 'self'; script-src 'unsafe-inline' 'unsafe-eval' 'self' *.bizzdesign.com pi.pardot.com www.google.com www.gstatic.com www.googletagmanager.com cdn.jsdelivr.net www.google-analytics.com *.googleadservices.com www.youtube.com *.wistia.com browser.sentry-cdn.com bizzdesign.chilipiper.com *.alfabetcloud.com cdn-cookieyes.com *.bing.com *.licdn.com *.oktopost.com js.zi-scripts.com tag.aticdn.net www.redditstatic.com a.quora.com bizzdesign.chilipiper.com fast.wistia.net api.ipify.org moderate.cleantalk.org fd.cleantalk.org dywrfp5ctng3l.cloudfront.net cdn.intellimize.co blob: ; object-src 'self' *.bizzdesign.com; style-src 'unsafe-inline' 'self' *.bizzdesign.com cdn.jsdelivr.net dywrfp5ctng3l.cloudfront.net; img-src data: 'self' *.bizzdesign.com *.bing.com cdn-cookieyes.com *.linkedin.com *.bing.com cdn-cookieyes.com www.googletagmanager.com *.google.com *.google.fr *.google.be *.google.de *.google.nl *.google.co.uk *.google.es q.quora.com alb.reddit.com bizzdesign.chilipiper.com stats.g.doubleclick.net *.wistia.com; media-src data: 'self' *.bizzdesign.com blob:; frame-src 'self' td.doubleclick.net www.googletagmanager.com www.youtube.com *.bizzdesign.com bizzdesign.chilipiper.com splunk-prod.alfabetcloud.com fast.wistia.net www.google.com fast.wistia.net ; frame-ancestors 'self' *.bizzdesign.com enablement.bizzdesign.com engagement.bizzdesign.com admin.mindtickle.com bizzdesign.mindtickle.com browser.sentry-cdn.com ; child-src 'self' *.bizzdesign.com ; font-src 'self' *.bizzdesign.com fonts.gstatic.com *.wistia.com; connect-src 'self' *.bizzdesign.com px.ads.linkedin.com *.clarity.ms bat.bing.net js.zi-scripts.com google.com *.google.com ws.zoominfo.com bat.bing.com www.google-analytics.com *.doubleclick.net scout.salesloft.com *.googlesyndication.com *.google-analytics.com *.googleadservices.com *.hotjar.io wss://ws.hotjar.com *.cookieyes.com cdn-cookieyes.com gjzbjmh.pa-cd.com pixel-config.reddit.com www.redditstatic.com cdn.jsdelivr.net bizzdesign.chilipiper.com pipedream.wistia.com fast.wistia.net fd.cleantalk.org bizzdesign.pinpointhq.com *.wistia.com browser.sentry-cdn.com log.intellimize.co; report-uri /policies/privacy-policy; upgrade-insecure-requests
X-Drupal-Cache
HIT
X-Drupal-Dynamic-Cache
MISS
X-Request-Id
v-537b7440-4abc-11f1-8c6d-7f518fc58aed
X-Served-By
cache-bos-kbos510020-BOS
X-Timer
S1778307559.545592,VS0,VE2
X-Webkit-Csp
default-src 'self'; script-src 'unsafe-inline' 'unsafe-eval' 'self' *.bizzdesign.com pi.pardot.com www.google.com www.gstatic.com www.googletagmanager.com cdn.jsdelivr.net www.google-analytics.com *.googleadservices.com www.youtube.com *.wistia.com browser.sentry-cdn.com bizzdesign.chilipiper.com *.alfabetcloud.com cdn-cookieyes.com *.bing.com *.licdn.com *.oktopost.com js.zi-scripts.com tag.aticdn.net www.redditstatic.com a.quora.com bizzdesign.chilipiper.com fast.wistia.net api.ipify.org moderate.cleantalk.org fd.cleantalk.org dywrfp5ctng3l.cloudfront.net cdn.intellimize.co blob: ; object-src 'self' *.bizzdesign.com; style-src 'unsafe-inline' 'self' *.bizzdesign.com cdn.jsdelivr.net dywrfp5ctng3l.cloudfront.net; img-src data: 'self' *.bizzdesign.com *.bing.com cdn-cookieyes.com *.linkedin.com *.bing.com cdn-cookieyes.com www.googletagmanager.com *.google.com *.google.fr *.google.be *.google.de *.google.nl *.google.co.uk *.google.es q.quora.com alb.reddit.com bizzdesign.chilipiper.com stats.g.doubleclick.net *.wistia.com; media-src data: 'self' *.bizzdesign.com blob:; frame-src 'self' td.doubleclick.net www.googletagmanager.com www.youtube.com *.bizzdesign.com bizzdesign.chilipiper.com splunk-prod.alfabetcloud.com fast.wistia.net www.google.com fast.wistia.net ; frame-ancestors 'self' *.bizzdesign.com enablement.bizzdesign.com engagement.bizzdesign.com admin.mindtickle.com bizzdesign.mindtickle.com browser.sentry-cdn.com ; child-src 'self' *.bizzdesign.com ; font-src 'self' *.bizzdesign.com fonts.gstatic.com *.wistia.com; connect-src 'self' *.bizzdesign.com px.ads.linkedin.com *.clarity.ms bat.bing.net js.zi-scripts.com google.com *.google.com ws.zoominfo.com bat.bing.com www.google-analytics.com *.doubleclick.net scout.salesloft.com *.googlesyndication.com *.google-analytics.com *.googleadservices.com *.hotjar.io wss://ws.hotjar.com *.cookieyes.com cdn-cookieyes.com gjzbjmh.pa-cd.com pixel-config.reddit.com www.redditstatic.com cdn.jsdelivr.net bizzdesign.chilipiper.com pipedream.wistia.com fast.wistia.net fd.cleantalk.org bizzdesign.pinpointhq.com *.wistia.com browser.sentry-cdn.com log.intellimize.co; report-uri /policies/privacy-policy; upgrade-insecure-requests
date: Sat, 09 May 2026 06:19:18 GMT via: Acquia Platform CDN 1.244 x-acquia-view: 1 x-ah-environment: prod x-cache: HIT, HIT x-cache-hits: 170, 0 x-content-security-policy: default-src 'self'; script-src 'unsafe-inline' 'unsafe-eval' 'self' *.bizzdesign.com pi.pardot.com www.google.com www.gstatic.com www.googletagmanager.com cdn.jsdelivr.net www.google-analytics.com *.googleadservices.com www.youtube.com *.wistia.com browser.sentry-cdn.com bizzdesign.chilipiper.com *.alfabetcloud.com cdn-cookieyes.com *.bing.com *.licdn.com *.oktopost.com js.zi-scripts.com tag.aticdn.net www.redditstatic.com a.quora.com bizzdesign.chilipiper.com fast.wistia.net api.ipify.org moderate.cleantalk.org fd.cleantalk.org dywrfp5ctng3l.cloudfront.net cdn.intellimize.co blob: ; object-src 'self' *.bizzdesign.com; style-src 'unsafe-inline' 'self' *.bizzdesign.com cdn.jsdelivr.net dywrfp5ctng3l.cloudfront.net; img-src data: 'self' *.bizzdesign.com *.bing.com cdn-cookieyes.com *.linkedin.com *.bing.com cdn-cookieyes.com www.googletagmanager.com *.google.com *.google.fr *.google.be *.google.de *.google.nl *.google.co.uk *.google.es q.quora.com alb.reddit.com bizzdesign.chilipiper.com stats.g.doubleclick.net *.wistia.com; media-src data: 'self' *.bizzdesign.com blob:; frame-src 'self' td.doubleclick.net www.googletagmanager.com www.youtube.com *.bizzdesign.com bizzdesign.chilipiper.com splunk-prod.alfabetcloud.com fast.wistia.net www.google.com fast.wistia.net ; frame-ancestors 'self' *.bizzdesign.com enablement.bizzdesign.com engagement.bizzdesign.com admin.mindtickle.com bizzdesign.mindtickle.com browser.sentry-cdn.com ; child-src 'self' *.bizzdesign.com ; font-src 'self' *.bizzdesign.com fonts.gstatic.com *.wistia.com; connect-src 'self' *.bizzdesign.com px.ads.linkedin.com *.clarity.ms bat.bing.net js.zi-scripts.com google.com *.google.com ws.zoominfo.com bat.bing.com www.google-analytics.com *.doubleclick.net scout.salesloft.com *.googlesyndication.com *.google-analytics.com *.googleadservices.com *.hotjar.io wss://ws.hotjar.com *.cookieyes.com cdn-cookieyes.com gjzbjmh.pa-cd.com pixel-config.reddit.com www.redditstatic.com cdn.jsdelivr.net bizzdesign.chilipiper.com pipedream.wistia.com fast.wistia.net fd.cleantalk.org bizzdesign.pinpointhq.com *.wistia.com browser.sentry-cdn.com log.intellimize.co; report-uri /policies/privacy-policy; upgrade-insecure-requests x-drupal-cache: HIT x-drupal-dynamic-cache: MISS x-request-id: v-537b7440-4abc-11f1-8c6d-7f518fc58aed x-served-by: cache-bos-kbos510020-BOS x-timer: S1778307559.545592,VS0,VE2 x-webkit-csp: default-src 'self'; script-src 'unsafe-inline' 'unsafe-eval' 'self' *.bizzdesign.com pi.pardot.com www.google.com www.gstatic.com www.googletagmanager.com cdn.jsdelivr.net www.google-analytics.com *.googleadservices.com www.youtube.com *.wistia.com browser.sentry-cdn.com bizzdesign.chilipiper.com *.alfabetcloud.com cdn-cookieyes.com *.bing.com *.licdn.com *.oktopost.com js.zi-scripts.com tag.aticdn.net www.redditstatic.com a.quora.com bizzdesign.chilipiper.com fast.wistia.net api.ipify.org moderate.cleantalk.org fd.cleantalk.org dywrfp5ctng3l.cloudfront.net cdn.intellimize.co blob: ; object-src 'self' *.bizzdesign.com; style-src 'unsafe-inline' 'self' *.bizzdesign.com cdn.jsdelivr.net dywrfp5ctng3l.cloudfront.net; img-src data: 'self' *.bizzdesign.com *.bing.com cdn-cookieyes.com *.linkedin.com *.bing.com cdn-cookieyes.com www.googletagmanager.com *.google.com *.google.fr *.google.be *.google.de *.google.nl *.google.co.uk *.google.es q.quora.com alb.reddit.com bizzdesign.chilipiper.com stats.g.doubleclick.net *.wistia.com; media-src data: 'self' *.bizzdesign.com blob:; frame-src 'self' td.doubleclick.net www.googletagmanager.com www.youtube.com *.bizzdesign.com bizzdesign.chilipiper.com splunk-prod.alfabetcloud.com fast.wistia.net www.google.com fast.wistia.net ; frame-ancestors 'self' *.bizzdesign.com enablement.bizzdesign.com engagement.bizzdesign.com admin.mindtickle.com bizzdesign.mindtickle.com browser.sentry-cdn.com ; child-src 'self' *.bizzdesign.com ; font-src 'self' *.bizzdesign.com fonts.gstatic.com *.wistia.com; connect-src 'self' *.bizzdesign.com px.ads.linkedin.com *.clarity.ms bat.bing.net js.zi-scripts.com google.com *.google.com ws.zoominfo.com bat.bing.com www.google-analytics.com *.doubleclick.net scout.salesloft.com *.googlesyndication.com *.google-analytics.com *.googleadservices.com *.hotjar.io wss://ws.hotjar.com *.cookieyes.com cdn-cookieyes.com gjzbjmh.pa-cd.com pixel-config.reddit.com www.redditstatic.com cdn.jsdelivr.net bizzdesign.chilipiper.com pipedream.wistia.com fast.wistia.net fd.cleantalk.org bizzdesign.pinpointhq.com *.wistia.com browser.sentry-cdn.com log.intellimize.co; report-uri /policies/privacy-policy; upgrade-insecure-requests
Recommendations
Enable compression (gzip/brotli) to improve performance