HTTP Headers Analysis for https://coub.com

Detected Technologies from Headers

See all in URL Inspect 1

Nginx

HTTP Security Headers

Status

Strict-Transport-Security

Good

max-age=63072000; includeSubDomains

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Present

ALLOWALL

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Consider adding 'preload' to HSTS for maximum security
• Add Content-Security-Policy header to prevent XSS attacks
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding, Origin

connection: close
transfer-encoding: chunked
vary: Accept-Encoding, Origin

Caching Headers

Cache-Control

Caching

max-age=0, private, must-revalidate

cache-control: max-age=0, private, must-revalidate

Content Headers

Content-Type

Content

text/html; charset=utf-8

content-type: text/html; charset=utf-8

Server Headers

Server

nginx

X-Runtime

Server

0.030270

server: nginx
x-runtime: 0.030270

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: is_logged_in=false; path=/; SameSite=Lax; secure
_cobb_session=zTmO8cAcEKrVOgy4sk62dL3ukJ7nCocENje%2FiuW%2FTfrG1Gy9FuN36jJ%2BVGM2dr7EoKzJ0O2lG6ORkU2wrgBuDvfnPRWAOP5esmC%2FjE2Xfet9umvdpQu3a%2BHWNfXm5yQOp0gEFU3Qbv3WQ8%2FcDsXCZqbIu3GjHaa5sbDMPgQFkHZr4KCCPBSyc6YYmktz3kTHmYFWDW82W%2FvkffbsUQJvysoY4%2BK9aMndclgLdeuZVsEanIxUQYAes0HFbytVBLECTOovnzXc7EYIocelCRTxcq66z3wC--PV9qIS8xcG5wOqZM--aXyPwFc8gFns%2F6E2D2sHFw%3D%3D; path=/; secure; HttpOnly; SameSite=Lax

Other Headers

Date

Other

Sun, 10 May 2026 01:23:26 GMT

Link

Other

URL https://assets-cdn-s.coub.com/assets/coub/pages/featured/featured_page_light-d4d84614ac0a4dcdfc7581e4f5480dc08dd4f9c1ba9e65416d7fbd77581983c7.css

rel=preload as=style nopush

URL https://assets-cdn-s.coub.com/assets/coub/core_light-eb3f8e170c9eff19ee1d8eb9cf5ee1ea4f722542f8c6d4bf08ad2a1d282abfc1.css

rel=preload as=style nopush

URL https://assets-cdn-s.coub.com/assets/coub/unlogged_light-48413e4121fcc88dfa861115b5ce00892d6a195bb49b7aee6ba1c6c2ec7588ab.css

rel=preload as=style nopush

URL https://assets-cdn-s.coub.com/assets/sync_bundle-19b8151991aaece13ba2911ba85952e6c4ccb9233e3349d6fd3337d9564783c7.js

rel=preload as=script crossorigin=anonymous nopush

X-Permitted-Cross-Domain-Policies

Other

none

X-Request-Id

Other

bc586067-e1a6-4674-a8f2-a29a9b7a25db

date: Sun, 10 May 2026 01:23:26 GMT
link: <https://assets-cdn-s.coub.com/assets/coub/pages/featured/featured_page_light-d4d84614ac0a4dcdfc7581e4f5480dc08dd4f9c1ba9e65416d7fbd77581983c7.css>; rel=preload; as=style; nopush,<https://assets-cdn-s.coub.com/assets/coub/core_light-eb3f8e170c9eff19ee1d8eb9cf5ee1ea4f722542f8c6d4bf08ad2a1d282abfc1.css>; rel=preload; as=style; nopush,<https://assets-cdn-s.coub.com/assets/coub/unlogged_light-48413e4121fcc88dfa861115b5ce00892d6a195bb49b7aee6ba1c6c2ec7588ab.css>; rel=preload; as=style; nopush,<https://assets-cdn-s.coub.com/assets/sync_bundle-19b8151991aaece13ba2911ba85952e6c4ccb9233e3349d6fd3337d9564783c7.js>; rel=preload; as=script; crossorigin=anonymous; nopush,<https://assets-cdn-s.coub.com/assets/site-1c1dd7a90ffd55c76594abf7adc36c11736f385b03630299240ae0b42403ab9f.js>; rel=preload; as=script; crossorigin=anonymous; nopush
x-permitted-cross-domain-policies: none
x-request-id: bc586067-e1a6-4674-a8f2-a29a9b7a25db

Recommendations

Enable compression (gzip/brotli) to improve performance