HTTP Headers Analysis for https://bomgarcloud.com

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=63072000; includeSubdomains; preload

Content-Security-Policy

Weak

frame-ancestors; base-uri; form-action; +1 more

X-Frame-Options

Good

sameorigin

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Significantly strengthen CSP directives
• Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding

Caching Headers

3 headers

Age

Caching

26

Cache-Control

Caching

max-age=0, s-maxage=60, stale-while-revalidate=300, stale-if-error=86400

Last-Modified

Caching

Wed, 14 Jan 2026 17:56:23 GMT

Content Headers

1 headers

Content-Type

Content

text/html

Server Headers

1 headers

Server

cloudflare

CORS Headers

0 headers

No CORS headers found

Cookies Headers

1 headers

Set-Cookie

Cookies

__cf_bm=zZn5H_lDGOGp60yf0XwfhY5wAsxzMFWcT1u2WzIiI5c-1768413892.7070541-1.0.1.1-9GiQKEiYuMFj9uM3LmtjLFnQzQXbQi5vVWrWFcNbR6_9YNp8rs9APQ.810rCHQwO7w5A48ujf7XS9A51NmPvh.b.yiRzAis_Bod870pO7AeFsnYwwGn6lFtUH1ubtJpz; HttpOnly; Secure; Path=/; Domain=beyondtrust.com; Expires=Wed, 14 Jan 2026 18:34:52 GMT

Other Headers

8 headers

Cf-Cache-Status

Other

DYNAMIC

Cf-Ray

Other

9bdf0eed6c7b0853-IAD

Date

Other

Wed, 14 Jan 2026 18:04:52 GMT

Via

Other

1.1 d1be83cd914d81587556aa04bd645fce.cloudfront.net (CloudFront)

X-Amz-Cf-Id

Other

TIIdRD8S_J3Mk50yDWSO3WCYNQdJ8eZLMpNLRtJvMj-bZwCEr0o-WQ==

X-Amz-Cf-Pop

Other

IAD89-P3

X-Cache

Other

Hit from cloudfront

X-Permitted-Cross-Domain-Policies

Other

none

Recommendations

Enable compression (gzip/brotli) to improve performance