HTTP Headers Analysis for https://dicks.com

Detected Technologies from Headers

See all in URL Inspect 49

PayPal

Adobe Target

AWS CloudFront

Google AdSense

Auth0

Google Maps

Quantum Metric

Criteo

Riskified

Google Tag Manager

Google Sign-In

Google reCAPTCHA

Affirm

Braintree

Tapad

Liveramp

Adyen

JotForm

Google DoubleClick

Google Analytics

Microsoft Advertising

Google Conversion Tracking

Adobe Audience Manager

Tealium

Google Static File Front End

Google API JS Client

TikTok Analytics

AzureFrontDoor

Twitter

Afterpay

Branch

Fastly

Google Search

BootstrapCDN

Facebook

Amazon S3

Snapchat

Sketchfab

Adobe Experience Manager

Cloudflare CDNJS

jQuery

Rubicon Project

Akamai

YouTube

The Trade Desk

Google Cloud

Microsoft Azure

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=86400 ; includeSubDomains ; preload

Content-Security-Policy

Basic

script-src; worker-src; frame-ancestors; +1 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add X-Content-Type-Options: nosniff
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

connection: close

Caching Headers

Cache-Control

Caching

no-cache, no-store, must-revalidate, max-age=0, no-cache, no-store

Expires

Caching

0, Thu, 26 Feb 2026 15:37:00 GMT

Pragma

Caching

no-cache, no-cache

cache-control: no-cache, no-store, must-revalidate, max-age=0, no-cache, no-store
expires: 0, Thu, 26 Feb 2026 15:37:00 GMT
pragma: no-cache, no-cache

Content Headers

Content-Length

Content

1423

Content-Type

Content

text/html

content-length: 1423
content-type: text/html

Server Headers

Server

AkamaiGHost

server: AkamaiGHost

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: swimlane_as_exp_dsg=12; expires=Mon, 31-Dec-2038 23:59:59 GMT; path=/; secure
AdditionalLanes=47,66,71,31,84,88; expires=Fri, 02-Apr-2027 15:37:00 GMT; path=/; domain=.dickssportinggoods.com
whereabouts=20146; path=/
dih=desktop; path=/
NNC=1; path=/
akaa_athlete_v1=SLGqA4FW6d+Gj1gaQwnnUQ==; path=/; domain=.dickssportinggoods.com
akaa_athlete_v2=rjgNyArE6SnKVQPcIXNrYQ==; path=/; domain=.dickssportinggoods.com
dsg_perf_analysis=UB-3; path=/; domain=www.dickssportinggoods.com
akaas_AS_EXP_DSG=2147483647~rv=12~id=f8d96fbe2365c47f01b9d9cc9dfa9188; path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bm_ss=ab8e18ef4e; Secure; SameSite=None; Domain=.dickssportinggoods.com; Path=/; HttpOnly; Max-Age=3600
bm_s=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; Domain=.dickssportinggoods.com; Path=/; Expires=Sun, 29 Mar 2026 15:37:00 GMT; Max-Age=2678400; Secure; HttpOnly
bm_so=310F37AA290A6877A14CE05815A8986870DC113F6FDEF67F2CFE35E4ECFF0944~YAAQ5cgwF4TCT5acAQAAJKKYmgapy8OL6vJtC9gzgemRKgO+rZSldFuNdaOz6q2/iNJ6s11YN4mFeJpagR+LlwNcWlGv9E9/ePo6zj881CVt+HfCStz15MrdU8JjZ3UVT3+qHJg2nxB6ACbirCdZ40U5OOIQpe7lyEyIxkPoi9KwOxT09owdXD6gJ9IpXXJaopNypPMlPjo8fNP3ZHMc3RBw60Vuo9NCNM8cLt2RbdLs3pulEZmFZ/gVhd3buf9o5LBvx+MiNQcGpwcezIZQDbeFVJ9SF0h3PwiDGMNyMTFt3SoIBBYbpBi75+LczLrg1buPSxlmG1lJfdIR9YlK0gYR/KQx0TIfH1+zGE8uHbny5OFz7p/Xiq3MLyvxDmV4DuLMgweoxMOJu2CDRAJilo3WPLtIsa+iJe5Ua3mYg4673UVWut3mT+nBCfQNiqc1asqqVm8TrL4VJqWl5p2SUDFchv2hDb++K6I=; Domain=.dickssportinggoods.com; Path=/; Expires=Fri, 27 Feb 2026 15:37:00 GMT; Max-Age=86400; Secure

Other Headers

Akamai-Grn

Other

0.e5c83017.1772120220.350cbe74

Date

Other

Thu, 26 Feb 2026 15:37:00 GMT

Mime-Version

Other

1.0

Speculation-Rules

Other

"/speculationruleshome.json"

akamai-grn: 0.e5c83017.1772120220.350cbe74
date: Thu, 26 Feb 2026 15:37:00 GMT
mime-version: 1.0
speculation-rules: "/speculationruleshome.json"

Recommendations

Enable compression (gzip/brotli) to improve performance