HTTP Headers Analysis for https://cvent.com

Detected Technologies from Headers

See all in URL Inspect 6

AWS CloudFront

Cvent

Drupal

Nginx

Seismic

Varnish

HTTP Security Headers

Status

Strict-Transport-Security

Excellent

max-age=63072000; includeSubDomains; preload

Content-Security-Policy

Weak

object-src; frame-ancestors; report-uri Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Significantly strengthen CSP directives
• Consider adding Permissions-Policy to control browser features

Performance Headers

Accept-Ranges

Performance

bytes

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Cookie,Accept-Encoding

accept-ranges: bytes
connection: close
transfer-encoding: chunked
vary: Cookie,Accept-Encoding

Caching Headers

Age

Caching

1561498

Cache-Control

Caching

max-age=2764800, public

Etag

Caching

W/"1770188832"

Expires

Caching

Sun, 19 Nov 1978 05:00:00 GMT

Last-Modified

Caching

Wed, 04 Feb 2026 07:07:12 GMT

age: 1561498
cache-control: max-age=2764800, public
etag: W/"1770188832"
expires: Sun, 19 Nov 1978 05:00:00 GMT
last-modified: Wed, 04 Feb 2026 07:07:12 GMT

Content Headers

Content-Language

Content

en

Content-Type

Content

text/html; charset=UTF-8

content-language: en
content-type: text/html; charset=UTF-8

Server Headers

Server

nginx

server: nginx

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: SSESS3da1fca3aac9970f7109f1ef4a13874d=NRE55%2C6bpCidwtgTlzwwnNBfpx4UvG43GF0kFMRFKRlS4dqp; expires=Fri, 27 Feb 2026 10:40:34 GMT; Max-Age=2000000; path=/; domain=.www.cvent.com; secure; HttpOnly

Other Headers

Date

Other

Wed, 04 Feb 2026 07:07:14 GMT

Via

Other

varnish, 1.1 4685cae701bd588fa0176a1c8b1e52f4.cloudfront.net (CloudFront)

X-Ah-Environment

Other

prod

X-Amz-Cf-Id

Other

gSNfi_XthSV5fzVUzw0o8hzuaQH_XvtSrJP7gxxqBi7fAzJzxF-yAg==

X-Amz-Cf-Pop

Other

IAD12-P2

X-Cache

Other

Hit from cloudfront

X-Drupal-Dynamic-Cache

Other

UNCACHEABLE (poor cacheability)

X-Generator

Other

Drupal 10 (https://www.drupal.org)

X-Request-Id

Other

v-211da29c-0198-11f1-9b5a-3b091809a1ea

date: Wed, 04 Feb 2026 07:07:14 GMT
via: varnish, 1.1 4685cae701bd588fa0176a1c8b1e52f4.cloudfront.net (CloudFront)
x-ah-environment: prod
x-amz-cf-id: gSNfi_XthSV5fzVUzw0o8hzuaQH_XvtSrJP7gxxqBi7fAzJzxF-yAg==
x-amz-cf-pop: IAD12-P2
x-cache: Hit from cloudfront
x-drupal-dynamic-cache: UNCACHEABLE (poor cacheability)
x-generator: Drupal 10 (https://www.drupal.org)
x-request-id: v-211da29c-0198-11f1-9b5a-3b091809a1ea

Recommendations

Enable compression (gzip/brotli) to improve performance