DNS Gurus
Cached · just now
13 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=15552000; includeSubDomains; preload
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers
Accept-Ranges
Performance
bytes
Connection
Performance
close

Caching Headers

1 headers
Cache-Control
Caching
max-age=0

Content Headers

2 headers
Content-Length
Content
251
Content-Type
Content
application/xml

Server Headers

1 headers
Server
Server
cloudflare

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
__cf_bm=bvWYE07cl.Ta.Z.YbmmlHduxyK5hR7sOJ_TSV_zafY4-1767127347-1.0.1.1-xd6ndsObbpmYNz6By3l.oz0Efkne5Qol_sPT5FGFaoFgfhd1sR.9OeFrGJ0_cxnabd0SeuDUN.IZKGMLdgNiNV3FDgMwJaw5hzx0DdVC65o; path=/; expires=Tue, 30-Dec-25 21:12:27 GMT; domain=.cdn.staystack.encrobytes.com; HttpOnly; Secure; SameSite=None

Other Headers

5 headers
Cf-Cache-Status
Other
MISS
Cf-Ray
Other
9b645d22a8d7f26a-IAD
Date
Other
Tue, 30 Dec 2025 20:42:27 GMT
X-Amz-Request-Id
Other
tx00000bee5e9dc5524403d-0069543933-2f89ff6f-blr1a
X-Do-Cdn-Uuid
Other
e8be7c4f-670c-47d4-9473-3ce0c1074e6b

Recommendations

Enable compression (gzip/brotli) to improve performance