SSL Verification Bypassed
The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.
Reason:
Hostname Mismatch - certificate is issued for a248.e.akamai.net, *.akamaized.net, *.akamaized-staging.net, *.akamaihd.net, *.akamaihd-staging.net, not for cdn.dev.fluidpreview.office.net
Open
Cached
·
just now
20
Headers
Detected Technologies from Headers
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
No performance headers found
Caching Headers
Expires
Mon, 27 Apr 2026 13:37:25 GMT
Pragma
no-cache
expires: Mon, 27 Apr 2026 13:37:25 GMT pragma: no-cache
Content Headers
Content-Length
341
Content-Type
application/xml
content-length: 341 content-type: application/xml
Server Headers
No server headers found
CORS Headers
Access-Control-Allow-Origin
*
Access-Control-Expose-Headers
date,Akamai-Request-BC,X-Cdn-Provider,X-Ms-Request-Id
access-control-allow-origin: * access-control-expose-headers: date,Akamai-Request-BC,X-Cdn-Provider,X-Ms-Request-Id
Cookies Headers
Other Headers
Ak-Network
FF
Akamai-Cache-Status
NotCacheable from child
Akamai-Request-Bc
[a=23.216.9.25,b=593740452,c=g,n=US_IL_MOUNTPROSPECT,o=20940],[c=c,n=US_CA_ELSEGUNDO,o=20940],[a=193,c=o]
Alt-Svc
h3=":443"; ma=93600,h3-29=":443"; ma=93600
Date
Mon, 27 Apr 2026 13:37:25 GMT
Nel
Report-To Group
NelM365CDNUpload1
max-age: 1w
success: 1.0%
failure: 100.0%
include subdomains
Report-To
Server-Timing
clientrtt; dur=20, clienttt; dur=181, origin; dur=11 , cdntime; dur=170
Timing-Allow-Origin
*
X-Brotli-Not-Skipped
true
X-Cdn-Provider
Akamai
X-Gzip-Rule
true
X-Ms-Request-Id
372c9656-a01e-008c-084a-d699a6000000
ak-network: FF
akamai-cache-status: NotCacheable from child
akamai-request-bc: [a=23.216.9.25,b=593740452,c=g,n=US_IL_MOUNTPROSPECT,o=20940],[c=c,n=US_CA_ELSEGUNDO,o=20940],[a=193,c=o]
alt-svc: h3=":443"; ma=93600,h3-29=":443"; ma=93600
date: Mon, 27 Apr 2026 13:37:25 GMT
nel: {"report_to":"NelM365CDNUpload1","max_age":604800,"include_subdomains":true,"failure_fraction":1.0,"success_fraction":0.01}
report-to: {"group":"NelM365CDNUpload1","max_age":604800,"endpoints":[{"url":"https://M365CDN.nelsdf.measure.office.net/api/report?FrontEnd=AkamaiCDNDogfood&DestinationEndpoint=MOUNTPROSPECT&ASN=20940&Country=US&Region=IL&RequestIdentifier=0.1909d817.1777297045.2363c2a4&TotalRTCDNTime=20&CompressionType=&FileSize=341"}],"include_subdomains ":true}
server-timing: clientrtt; dur=20, clienttt; dur=181, origin; dur=11 , cdntime; dur=170
timing-allow-origin: *
x-brotli-not-skipped: true
x-cdn-provider: Akamai
x-gzip-rule: true
x-ms-request-id: 372c9656-a01e-008c-084a-d699a6000000
Recommendations
Enable compression (gzip/brotli) to improve performance
Add Cache-Control header to optimize caching