HTTP Headers Analysis for https://buildertrend.com

Detected Technologies from Headers

See all in URL Inspect 3

Cloudflare NEL Monitoring

Cloudflare CDN

Kinsta Active incidents

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Weak

frame-ancestors Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Significantly strengthen CSP directives
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding

connection: close
transfer-encoding: chunked
vary: Accept-Encoding

Caching Headers

Cache-Control

Caching

no-cache

cache-control: no-cache

Content Headers

Content-Type

Content

text/html; charset=UTF-8

content-type: text/html; charset=UTF-8

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: ct_ps_timestamp=1778089540; path=/; secure; HttpOnly; SameSite=Lax
apbct_site_landing_ts=1778089540; path=/; secure; HttpOnly; SameSite=Lax
apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522ct_ps_timestamp%2522%255D%252C%2522check_value%2522%253A%2522a5f1e04c2385dcc15b4b02ff3ce0cf7d%2522%257D; path=/; secure; HttpOnly; SameSite=Lax
apbct_page_hits=1; path=/; secure; HttpOnly; SameSite=Lax
ct_sfw_pass_key=2e4b727b23e80595bed8cc670649234a0; expires=Fri, 05 Jun 2026 17:45:42 GMT; Max-Age=2592000; path=/; secure; SameSite=Lax
bt_code_pair=%7B%22code_verifier%22%3A%22yLEu9RrLXjjvPl61r6prQ2bMX2wX3xDiuHdaQdW3MrQ-l0oP1MAcU1s1dytTXtEnkPiqEBfHEyJsO3Yc2EYAkQ%22%2C%22code_challenge%22%3A%22NON_l1U8OtlcFBHC-jDYVd9YgS8_ypd5ypJ0GCrgsAo%22%7D; expires=Wed, 06 May 2026 17:55:42 GMT; Max-Age=600; path=/; secure; HttpOnly; SameSite=Lax
__cf_bm=Mg1RqfWLIsJXBYvIVF00bHAY13OKBf4YsZ0BjCn9Wao-1778097820-1.0.1.1-CaiolihBjxYSgydXwngXbpa5MakA37.4pvpcql5WUkON_6oVpW1hSvBD9I4R458hHrStBJgYviNsPiQZE_H2JudlbPQbDH8UVdilAq79rgg; path=/; expires=Wed, 06-May-26 20:33:40 GMT; domain=.buildertrend.com; HttpOnly; Secure; SameSite=None

Other Headers

Alt-Svc

Other

h3=":443"; ma=86400

Cf-Cache-Status

Other

DYNAMIC

Cf-Ray

Other

9f7a96ee0a0d2423-IAD

Date

Other

Wed, 06 May 2026 20:03:40 GMT

Ki-Cache-Type

Other

None

Ki-Edge

Other

v=27.1.1;mv=99.9.9

Ki-Origin

Other

g1p

Nel

Other

Report-To Group cf-nel max-age: 1w

success: 1.0%

Report-To

Other

Group cf-nel max-age: 1w

Endpoint 1 https://a.nel.cloudflare.com/report/v4?s=AgTODTaHzeGK%2Bgf6Ta%2BBr7RL7IGE2DrQYm5i%2BsfHLRF4hyPBTHqaYgJgNff%2B%2BAEK4KfGyH9YUlYt7A6K%2BiKTN%2FIuoP4Q8Q4awVz%2BbJTfsJIiSem0zK5gv54TilVTq4wS%2B7I%3D

X-Edge-Location-Klb

Other

1

X-Kinsta-Cache

Other

HIT

alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
cf-ray: 9f7a96ee0a0d2423-IAD
date: Wed, 06 May 2026 20:03:40 GMT
ki-cache-type: None
ki-edge: v=27.1.1;mv=99.9.9
ki-origin: g1p
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AgTODTaHzeGK%2Bgf6Ta%2BBr7RL7IGE2DrQYm5i%2BsfHLRF4hyPBTHqaYgJgNff%2B%2BAEK4KfGyH9YUlYt7A6K%2BiKTN%2FIuoP4Q8Q4awVz%2BbJTfsJIiSem0zK5gv54TilVTq4wS%2B7I%3D"}],"group":"cf-nel","max_age":604800}
x-edge-location-klb: 1
x-kinsta-cache: HIT

Recommendations

Enable compression (gzip/brotli) to improve performance