HTTP Headers Analysis for https://docs.wise.com

Detected Technologies from Headers

See all in URL Inspect 2

AWS CloudFront

Cloudflare CDN

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31536000

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding

connection: close
transfer-encoding: chunked
vary: Accept-Encoding

Caching Headers

Cache-Control

Caching

private

cache-control: private

Content Headers

Content-Type

Content

text/html; charset=UTF-8

content-type: text/html; charset=UTF-8

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: __cf_bm=ODX4bPUh_4y1xYmsRCnzKSQFU7nuiZuG_NShYlY7l0E-1777709923.3842788-1.0.1.1-0BVvmArPaB1zm7myp9CY70BTB_VeC33rLSkm89uOdcmW7stEzNMLwXgHUQJC.XRgYF8gSaQ0ojaZ_XZ9UuD2VdzZDStVHJvHWsvsuC2E8Yt7T2Uakg3H1dtWGnNhIUdHlZ.ne01g_Jl.5oi1fNpXpQ; HttpOnly; Secure; Path=/; Domain=wise.com; Expires=Sat, 02 May 2026 08:48:43 GMT

Other Headers

Accept-Ch

Other

Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Bitness

Alt-Svc

Other

h3=":443"; ma=86400

Cf-Cache-Status

Other

DYNAMIC

Cf-Ray

Other

9f5598cd2edd72d4-IAD

Date

Other

Sat, 02 May 2026 08:18:43 GMT

Via

Other

2.0 Caddy, 1.1 Caddy, 1.1 3578d122de1401ebc52a7afd35dd5d0c.cloudfront.net (CloudFront)

X-Amz-Cf-Id

Other

Z_d9v-FhTqwY7lm3tklMy_u9Aa7jdrLjjG-Q0KEdjHUQjfjGzHJm4g==

X-Amz-Cf-Pop

Other

IAD61-P10

X-Cache

Other

Miss from cloudfront

X-Request-Id

Other

cds-1cd906c8-6571-409a-99c7-5101c3359aae, cds-2b6e4c2a-799e-4c03-aa0f-f72034461029

accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Bitness
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
cf-ray: 9f5598cd2edd72d4-IAD
date: Sat, 02 May 2026 08:18:43 GMT
via: 2.0 Caddy, 1.1 Caddy, 1.1 3578d122de1401ebc52a7afd35dd5d0c.cloudfront.net (CloudFront)
x-amz-cf-id: Z_d9v-FhTqwY7lm3tklMy_u9Aa7jdrLjjG-Q0KEdjHUQjfjGzHJm4g==
x-amz-cf-pop: IAD61-P10
x-cache: Miss from cloudfront
x-request-id: cds-1cd906c8-6571-409a-99c7-5101c3359aae, cds-2b6e4c2a-799e-4c03-aa0f-f72034461029

Recommendations

Enable compression (gzip/brotli) to improve performance