DNS Gurus
Open Cached · just now
26 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=31536000
Content-Security-Policy
Weak
upgrade-insecure-requests
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Significantly strengthen CSP directives
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers
Connection
Performance
keep-alive
Transfer-Encoding
Performance
chunked
Vary
Performance
origin, Accept-Encoding

Caching Headers

1 headers
Cache-Control
Caching
s-maxage=5,max-age=5

Content Headers

1 headers
Content-Type
Content
text/html;charset=utf-8

Server Headers

1 headers
Server
Server
cloudflare

CORS Headers

1 headers
Access-Control-Allow-Credentials
Cors
false

Cookies Headers

1 headers
Set-Cookie
Cookies
_cfuvid=YCixn8CgmHluT7gzc1tLP5iy.zFg4i.0yxQepQXYY4g-1763825442079-0.0.1.1-604800000; path=/; domain=.hscoscdn-eu1.net; HttpOnly; Secure; SameSite=None

Other Headers

15 headers
Alt-Svc
Other
h3=":443"; ma=86400
Cf-Cache-Status
Other
MISS
Cf-Ray
Other
9a29782f4b12d640-IAD
Date
Other
Sat, 22 Nov 2025 15:30:42 GMT
X-Envoy-Upstream-Service-Time
Other
8
X-Evy-Trace-Listener
Other
listener_https
X-Evy-Trace-Route-Configuration
Other
listener_https/all
X-Evy-Trace-Route-Service-Name
Other
envoyset-translator
X-Evy-Trace-Served-By-Pod
Other
fra04/cms-bots-td/envoy-proxy-7ccbcd9c56-fvwrg
X-Evy-Trace-Virtual-Host
Other
all
X-Hs-Cfworker-Meta
Other
{"resolver":"OriginResolver"}
X-Hs-Reason
Other
domain cos-sl.origin.hscoscdn-eu1.net does not exist
X-Hubspot-Correlation-Id
Other
0329c0ba-7b9a-41e9-bc2e-c626a9dd4268
X-Hubspot-Notfound
Other
true
X-Request-Id
Other
0329c0ba-7b9a-41e9-bc2e-c626a9dd4268

Recommendations

Enable compression (gzip/brotli) to improve performance

Analysis completed in 999ms