HTTP Headers Analysis for https://bots.kore.ai

Detected Technologies from Headers

See all in URL Inspect 11

Canny

Google Analytics

Google Maps

Google Tag Manager

HubSpot

Mixpanel

Nginx

Pendo

Salesforce Sites

unpkg

Zendesk

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31536000; includeSubdomains;

Content-Security-Policy

Basic

frame-ancestors; script-src Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

sameorigin

X-Content-Type-Options

Present

nosniff, nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Consider adding Permissions-Policy to control browser features

Performance Headers

Accept-Ranges

Performance

bytes

Connection

Performance

close

Vary

Performance

Accept-Encoding

accept-ranges: bytes
connection: close
vary: Accept-Encoding

Caching Headers

Cache-Control

Caching

max-age=315360000, public, must-revalidate, no-cache, no-store

Etag

Caching

"69d920d6-2163"

Expires

Caching

Thu, 31 Dec 2037 23:55:55 GMT

Last-Modified

Caching

Fri, 10 Apr 2026 16:09:58 GMT

Pragma

Caching

no-cache, no-store

cache-control: max-age=315360000, public, must-revalidate, no-cache, no-store
etag: "69d920d6-2163"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 10 Apr 2026 16:09:58 GMT
pragma: no-cache, no-store

Content Headers

Content-Length

Content

8547

Content-Type

Content

text/html

content-length: 8547
content-type: text/html

Server Headers

Server

nginx

server: nginx

CORS Headers

No CORS headers found

Cookies Headers

No cookies headers found

Other Headers

Date

Other

Sat, 11 Apr 2026 15:40:37 GMT

date: Sat, 11 Apr 2026 15:40:37 GMT

Recommendations

Enable compression (gzip/brotli) to improve performance