DNS Gurus
Cached · just now
13 Headers

Detected Technologies from Headers

See all in URL Inspect 10
AWS logo AWS Figma logo Figma Google Analytics logo Google Analytics Google Fonts logo Google Fonts Nginx logo Nginx Pendo logo Pendo Microsoft Power BI logo Microsoft Power BI Statuspage logo Statuspage Stripe logo Stripe Workato logo Workato

HTTP Security Headers

Status
Strict-Transport-Security
Excellent
max-age=63072000; includeSubDomains; preload
Content-Security-Policy
Google Analytics logo
Basic
default-src; script-src; style-src; +6 more Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Present
same-origin
Permissions-Policy
Missing
Not configured
Recommendations
  • Improve CSP by adding more specific directives and removing 'unsafe-inline'
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Consider adding Permissions-Policy to control browser features

Performance Headers

Connection
Performance
close
Transfer-Encoding
Performance
chunked
Vary
Performance
Accept-Encoding

Caching Headers

Cache-Control
Caching
no-cache, no-cache, no-store, must-revalidate
Expires
Caching
Wed, 06 May 2026 18:30:07 GMT
Pragma
Caching
no-cache

Content Headers

Content-Type
Content
text/html

Server Headers

Server
Nginx logo
Server
nginx

CORS Headers

No CORS headers found

Cookies Headers

No cookies headers found

Other Headers

Date
Other
Wed, 06 May 2026 18:30:08 GMT

Recommendations

Enable compression (gzip/brotli) to improve performance