HTTP Headers Analysis for https://c.sf-syn.com

Detected Technologies from Headers

See all in URL Inspect 23

esm.sh

YouTube

AppNexus (Xandr)

Bing

Cloudflare CDN

Cloudflare Web Analytics

Google AdSense

Google Analytics

Google DoubleClick

Google reCAPTCHA

Google Search

Google Static File Front End

Google Tag Manager

Google Translate

HubSpot

HubSpot Analytics

HubSpot Forms

HubSpot Live Chat

Microsoft Translator

6sense

Twitch

Google Cloud

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Basic

upgrade-insecure-requests; object-src; script-src; +5 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Present

geolocation=(), microphone=(), camera=(); +4 more

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

connection: close
transfer-encoding: chunked

Caching Headers

Cache-Control

Caching

public, max-age=14400

Expires

Caching

Thu, 09 Apr 2026 12:55:36 GMT

Pragma

Caching

no-cache

cache-control: public, max-age=14400
expires: Thu, 09 Apr 2026 12:55:36 GMT
pragma: no-cache

Content Headers

Content-Type

Content

text/html; charset=utf-8

content-type: text/html; charset=utf-8

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: webflash=%7B%22message%22%3A%20%22404%20Not%20Found%5Cn%5CnThe%20resource%20could%20not%20be%20found.%5Cn%5Cn%20%20%20%22%2C%20%22status%22%3A%20%22error%22%2C%20%22sticky%22%3A%20true%7D; Path=/; SameSite=Strict
webflash=; Max-Age=0; Path=/; expires=Wed, 31-Dec-97 23:59:59 GMT; SameSite=Strict
webflash=; Max-Age=0; Path=/; expires=Wed, 31-Dec-97 23:59:59 GMT; SameSite=Strict
webflash=; Max-Age=0; Path=/; expires=Wed, 31-Dec-97 23:59:59 GMT; SameSite=Strict
webflash=; Max-Age=0; Path=/; expires=Wed, 31-Dec-97 23:59:59 GMT; SameSite=Strict
direct_entry=1; Max-Age=14400; Path=/; expires=Thu, 09-Apr-2026 12:55:36 GMT; secure; HttpOnly
VISITOR=ee64b929-be2e-4ea1-9598-b86ba4fb890e; Max-Age=315360000; Path=/; expires=Sun, 06-Apr-2036 08:55:36 GMT; secure; HttpOnly

Other Headers

Alt-Svc

Other

h3=":443"; ma=86400

Cf-Cache-Status

Other

MISS

Cf-Ray

Other

9e984b308d15c987-IAD

Date

Other

Thu, 09 Apr 2026 08:55:36 GMT

Feature-Policy

Other

geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'

Link

Other

URL https://a.fsdn.com/con/js/min/sf.sandiego-cmp-top.js?1775684191

rel=preload as=script

URL https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-regular.woff2

rel=preload as=font crossorigin

URL https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-700.woff2

rel=preload as=font crossorigin

URL https://a.fsdn.com/con/css/lato.css?1775684191

rel=preload as=style

alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
cf-ray: 9e984b308d15c987-IAD
date: Thu, 09 Apr 2026 08:55:36 GMT
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; payment 'none'; document-domain 'none'; display-capture 'none'; autoplay 'none'
link: <https://a.fsdn.com/con/js/min/sf.sandiego-cmp-top.js?1775684191>; rel=preload; as=script, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-regular.woff2>; rel=preload; as=font; crossorigin, <https://a.fsdn.com/con/css/fonts/sftheme/lato-v20-latin-ext_latin-700.woff2>; rel=preload; as=font; crossorigin, <https://a.fsdn.com/con/css/lato.css?1775684191>; rel=preload; as=style, <https://a.fsdn.com/con/css/sandiego.css?1775684191>; rel=preload; as=style, <https://a.fsdn.com/con/js/min/sf.sandiego-head.js?1775684191>; rel=preload; as=script, <https://a.fsdn.com/con/css/top.css?1775684191>; rel=preload; as=style

Recommendations

Enable compression (gzip/brotli) to improve performance