DNS Gurus
Cached · just now
28 Headers

Detected Technologies from Headers

See all in URL Inspect 17
Akamai logo Akamai Active incidents Bing logo Bing Facebook logo Facebook Gauthmath logo Gauthmath Google Analytics logo Google Analytics Google Conversion Tracking logo Google Conversion Tracking Google DoubleClick logo Google DoubleClick Google Search logo Google Search Google Static File Front End logo Google Static File Front End Google Tag Manager logo Google Tag Manager Microsoft Clarity logo Microsoft Clarity Nginx logo Nginx TikTok logo TikTok TikTok Analytics logo TikTok Analytics YouTube logo YouTube Google Cloud logo Google Cloud Google Cloud Storage logo Google Cloud Storage

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=31536000 ; includeSubDomains
Content-Security-Policy
Google Analytics logo
Basic
report-uri; report-to; upgrade-insecure-requests; +8 more Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Improve CSP by adding more specific directives and removing 'unsafe-inline'
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

Connection
Performance
close, Transfer-Encoding
Transfer-Encoding
Performance
chunked

Caching Headers

Cache-Control
Caching
max-age=0, no-cache, no-store
Expires
Caching
Wed, 29 Apr 2026 06:02:30 GMT
Pragma
Caching
no-cache

Content Headers

Content-Type
Content
text/html; charset=UTF-8

Server Headers

Server
Nginx logo
Server
nginx
X-Powered-By
Server
Goofy Node

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie
Cookies

Other Headers

Date
Other
Wed, 29 Apr 2026 06:02:30 GMT
Reporting-Endpoints
Other
csp-endpoint="https://mon.gauthai-us.com/monitor_browser/collect/batch/security/?bid=EHI_H5&ev_type=csp&p=jMJf6k1GY6BA4KbmDVSsTh&v=3&s=657&b=oab"
Server-Timing
Other
inner; dur=510,bd-edenx-server-loader-(region$)/layout; dur=0.999928, bd-edenx-server-loader-layout; dur=10.999918, bd-edenx-server-loader-(region$)/page; dur=318.000078, bd-edenx-server-loader;decs="SSR"; dur=319.999933, bd-edenx-ssr-render-html;decs="SSR"; dur=67.000151, bd-edenx-server-handle-request; dur=498.999834, cdn-cache; desc=MISS, edge; dur=2, origin; dur=514
X-Akamai-Request-Id
Other
1721c0f
X-Bytefaas-Enable-Stream
Other
true
X-Bytefaas-Execution-Duration
Other
502.27
X-Bytefaas-Request-Id
Other
20260429060229BBB1CDF55FDDCD6D473A
X-Cache
Akamai logo
Other
TCP_MISS from a23-53-12-232.deploy.akamaitechnologies.com (AkamaiGHost/22.5.1-f3772c509bd97e9cbf399eab359b9b92) (-)
X-Ggw-Config-Version
Other
430319
X-Gw-Dst-Psm
Other
ehi.fe.portal_web_ttp_gs
X-Modernjs-Render
Other
server
X-Origin-Response-Time
Other
515,23.53.12.232
X-Processed-By
Other
Modern.js
X-Tt-Logid
Other
20260429060229BBB1CDF55FDDCD6D473A
X-Tt-Trace-Host
Other
012bc0ca3f0343295d9ddc0dfb8c0fe5017ee32f302c196c8c6f0eb484f2a9869dcc407937f3db1c2d006f567682c7bf9ac63435558d0ed71ecf2b5b7224e1a78197bfe163a19f80006e35939c2b56b02dac3d5fc8bacd70befed96317224a7172
X-Tt-Trace-Id
Other
00-260429060229BBB1CDF55FDDCD6D473A-69E232AC509195B4-00
X-Tt-Trace-Tag
Other
id=16;cdn-cache=miss;type=dyn

Recommendations

Enable compression (gzip/brotli) to improve performance

Consider removing X-Powered-By header to hide server technology