HTTP Headers Analysis for https://dashboard.eleostech.com

Detected Technologies from Headers

See all in URL Inspect 3

Google Analytics

AWS CloudFront

Google Tag Manager

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Add Content-Security-Policy header to prevent XSS attacks
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Origin

connection: close
transfer-encoding: chunked
vary: Origin

Caching Headers

Cache-Control

Caching

max-age=0, private, must-revalidate

Etag

Caching

W/"7a88409915dbd2f7a4d50348bb8f359f"

cache-control: max-age=0, private, must-revalidate
etag: W/"7a88409915dbd2f7a4d50348bb8f359f"

Content Headers

Content-Type

Content

text/html; charset=utf-8

content-type: text/html; charset=utf-8

Server Headers

X-Runtime

Server

0.019815

x-runtime: 0.019815

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: _roadocs_session=z0kizO4wZ%2BzMHbYq7ImY%2FLCDBn%2Bls3L%2BouD7awkih3DUvhjRNp9W88fF9T1rSj9x80qadLA1AFFMFiajVgKQGmKg36PegTrJQve7lvE495lj9dBRUC187feZFw0D6SgB1u0KBIczQYMgn2WoHIdcLTUSPuOB0s%2FmAoph3qy%2Fglvry9xawDpHs7Jd3BmLUr70YpelV99BMxVDLLfJWT1cHfQirhd57ZbpLILkRuCPzhBjqK%2B0hUnIJ0YSyO3JqWrHABkGjwdNbTBmqfh%2BoIV%2FZdtlMaPJmxg2lMQttDEtD9DQCkWLmYyOt8RH%2B5tKyEJ4--Pq4PFOMdvgrYiZYm--hPs2AuUObvXwyzHp1qawpg%3D%3D; path=/; HttpOnly; SameSite=Lax

Other Headers

Date

Other

Sat, 09 May 2026 00:51:06 GMT

Link

Other

URL https://secure.driveaxleapp.com/assets/application-eecae48b0746d28ff355e5580472a8cc6d8614c6eedcdcd3c959ff459e4017a2.css

rel=preload as=style nopush

URL https://secure.driveaxleapp.com/assets/application-e32e5e1f8470703395b6a0240fa3e4a5e933bc7facf1553d5af1bc49dec792da.js

rel=preload as=script nopush

URL

https://www.googletagmanager.com/gtag/js?id=G-0NL8SE0WQL

rel=preload as=script nopush

Via

Other

1.1 2b3c18475b2db8cebe637fe45982c61a.cloudfront.net (CloudFront)

X-Amz-Cf-Id

Other

73oFfscqFXh3YrXIJPbkfFJXn00-NRsx7d_gKA6-cr0JzcNQJNwiaQ==

X-Amz-Cf-Pop

Other

IAD55-P1

X-Cache

Other

Miss from cloudfront

X-Download-Options

Other

noopen

X-Permitted-Cross-Domain-Policies

Other

none

date: Sat, 09 May 2026 00:51:06 GMT
link: <https://secure.driveaxleapp.com/assets/application-eecae48b0746d28ff355e5580472a8cc6d8614c6eedcdcd3c959ff459e4017a2.css>; rel=preload; as=style; nopush,<https://secure.driveaxleapp.com/assets/application-e32e5e1f8470703395b6a0240fa3e4a5e933bc7facf1553d5af1bc49dec792da.js>; rel=preload; as=script; nopush,<https://www.googletagmanager.com/gtag/js?id=G-0NL8SE0WQL>; rel=preload; as=script; nopush
via: 1.1 2b3c18475b2db8cebe637fe45982c61a.cloudfront.net (CloudFront)
x-amz-cf-id: 73oFfscqFXh3YrXIJPbkfFJXn00-NRsx7d_gKA6-cr0JzcNQJNwiaQ==
x-amz-cf-pop: IAD55-P1
x-cache: Miss from cloudfront
x-download-options: noopen
x-permitted-cross-domain-policies: none

Recommendations

Enable compression (gzip/brotli) to improve performance