Open
Cached
·
just now
13
Headers
Detected Technologies from Headers
Gravatar
Microsoft Advertising
Bunny Fonts
Active incidents
Cloudflare
Active incidents
Cloudflare CDN
Cloudflare CDNJS
Cookiebot
Facebook
Google AdSense
Google Analytics
Google API JS Client
Google Conversion Tracking
Google DoubleClick
Google Fonts
Google Maps
Google Search
Google Static File Front End
Google Tag Manager
LinkedIn
Microsoft Clarity
Nginx
Trustpilot
unpkg
Usercentrics
Vimeo
WordPress
YouTube
Google Cloud
Google Cloud Storage
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=63072000
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Present
same-origin
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Connection
close
Transfer-Encoding
chunked
Vary
Accept-Encoding
connection: close transfer-encoding: chunked vary: Accept-Encoding
Caching Headers
No caching headers found
Content Headers
Content-Type
text/html; charset=UTF-8
content-type: text/html; charset=UTF-8
Server Headers
Server
nginx
server: nginx
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Thu, 30 Apr 2026 11:17:03 GMT
Link
rel=https://api.w.org/
rel=alternate
title=JSON
type=application/json
rel=shortlink
Reporting-Endpoints
csp-endpoint="https://webwhales.nl?gdsih-csp-report"
date: Thu, 30 Apr 2026 11:17:03 GMT link: <https://www.dyflexis.com/wp-json/>; rel="https://api.w.org/", <https://www.dyflexis.com/wp-json/wp/v2/pages/8754>; rel="alternate"; title="JSON"; type="application/json", <https://www.dyflexis.com/>; rel=shortlink reporting-endpoints: csp-endpoint="https://webwhales.nl?gdsih-csp-report"
Recommendations
Enable compression (gzip/brotli) to improve performance
Add Cache-Control header to optimize caching