DNS Gurus
Cached · just now
16 Headers

Detected Technologies from Headers

See all in URL Inspect 2
Netlify logo Netlify Nuxt logo Nuxt

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

Connection
Performance
close
Transfer-Encoding
Performance
chunked

Caching Headers

Age
Caching
0
Cache-Control
Caching
s-maxage=300,stale-while-revalidate
Etag
Caching
W/"SenLr0pEMl"
Last-Modified
Caching
Mon, 04 May 2026 14:05:39 GMT

Content Headers

Content-Type
Content
text/html;charset=utf-8

Server Headers

Server
Netlify logo
Server
Netlify
X-Powered-By
Nuxt logo
Server
Nuxt

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie
Cookies

Other Headers

Cache-Status
Netlify logo
Other
"Netlify Durable"; fwd=bypass, "Netlify Edge"; fwd=miss
Date
Other
Mon, 04 May 2026 14:06:14 GMT
Netlify-Vary
Netlify logo
Other
cookie=jwt,query
X-Nf-Request-Id
Other
01KQSMZ7KBRBFQ8W25GBRS0KXE
X-Robots-Tag
Other
all

Recommendations

Enable compression (gzip/brotli) to improve performance

Consider removing X-Powered-By header to hide server technology