HTTP Headers Analysis for https://docs.intercom.com

Detected Technologies from Headers

See all in URL Inspect 32

YouTube

Arcade

AWS CloudFront

Microsoft Advertising

Brightcove

Capterra

Facebook

Google AdSense

Google Analytics

Google Conversion Tracking

Google DoubleClick

Google Fonts

Google Search

Google Static File Front End

Google Tag Manager

Guideflow

Influ2

Intercom

JW Player

Loom

Nginx

OneTrust

Microsoft SharePoint

6sense

The Trade Desk

Twitter

Vidyard

Vimeo

Wistia

Google Cloud

HTTP Security Headers

Status

Strict-Transport-Security

Good

max-age=31536000; includeSubDomains

Content-Security-Policy

Good

default-src; base-uri; connect-src; +8 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Excellent

DENY

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Consider adding 'preload' to HSTS for maximum security
• Strengthen CSP by removing 'unsafe-eval'
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Sec-Fetch-Site,Accept-Encoding

connection: close
transfer-encoding: chunked
vary: Sec-Fetch-Site,Accept-Encoding

Caching Headers

Cache-Control

Caching

max-age=0, private, must-revalidate

Etag

Caching

W/"0c09e7f360de5d556b99115a06343939"

cache-control: max-age=0, private, must-revalidate
etag: W/"0c09e7f360de5d556b99115a06343939"

Content Headers

Content-Type

Content

text/html; charset=utf-8

content-type: text/html; charset=utf-8

Server Headers

Server

nginx

X-Runtime

Server

0.323591

server: nginx
x-runtime: 0.323591

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: recent_write=0a78a1e1-0376-426c-a9ab-6b91633b163d; path=/; max-age=1; HttpOnly
gtm_id=3cdd79bd-84fe-41ba-81d7-a56a197504a4; domain=intercom.com; path=/; expires=Fri, 26 Feb 2027 09:46:53 GMT

Other Headers

Alt-Svc

Other

h3=":443"; ma=86400

Date

Other

Thu, 26 Feb 2026 09:46:53 GMT

Status

Other

200 OK

Via

Other

1.1 afd508e8725b6457725f7b20366832e6.cloudfront.net (CloudFront)

X-Ami-Version

Other

ami-05c78277a6b2db1be

X-Amz-Cf-Id

Other

Dn4M2RUSOEPB4bTtma483FYTEa_mXW-DEiI4ESNBd5SC42ncbC_Ruw==

X-Amz-Cf-Pop

Other

IAD61-P9

X-Cache

Other

Miss from cloudfront

X-Intercom-Version

Other

f3b2d54f2c034408c3230baac13bf7d1c8e43c51

X-Request-Id

Other

00001u8hsgp4bf0tqeng

X-Request-Queueing

Other

0

alt-svc: h3=":443"; ma=86400
date: Thu, 26 Feb 2026 09:46:53 GMT
status: 200 OK
via: 1.1 afd508e8725b6457725f7b20366832e6.cloudfront.net (CloudFront)
x-ami-version: ami-05c78277a6b2db1be
x-amz-cf-id: Dn4M2RUSOEPB4bTtma483FYTEa_mXW-DEiI4ESNBd5SC42ncbC_Ruw==
x-amz-cf-pop: IAD61-P9
x-cache: Miss from cloudfront
x-intercom-version: f3b2d54f2c034408c3230baac13bf7d1c8e43c51
x-request-id: 00001u8hsgp4bf0tqeng
x-request-queueing: 0

Recommendations

Enable compression (gzip/brotli) to improve performance