Open
Cached
·
just now
4
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Connection
close
Transfer-Encoding
chunked
connection: close transfer-encoding: chunked
Caching Headers
No caching headers found
Content Headers
No content headers found
Server Headers
No server headers found
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Thu, 02 Apr 2026 18:08:51 GMT
X-Msedge-Ref
0tLDOaQAAAAD4SlLSXT7fT640rLArk9kDTU5aMjIxMDYwNjE4MDQ5AEVkZ2U=
date: Thu, 02 Apr 2026 18:08:51 GMT x-msedge-ref: 0tLDOaQAAAAD4SlLSXT7fT640rLArk9kDTU5aMjIxMDYwNjE4MDQ5AEVkZ2U=
Recommendations
Enable compression (gzip/brotli) to improve performance
Add Cache-Control header to optimize caching