SSL Verification Bypassed
The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.
Reason:
Hostname Mismatch - certificate is issued for quip.com, *.quipelements.com, quipelements.com, *.quip.com, not for ec2-54-201-227-248.us-west-2.compute.amazonaws.com
Open
Cached
·
9h ago
19
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Present
ALLOW-FROM https://quip.com
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Present
origin-when-cross-origin
Permissions-Policy
Missing
Not configured
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Add Content-Security-Policy header to prevent XSS attacks
- • Consider adding Permissions-Policy to control browser features
Performance Headers
2 headers
Connection
Performance
close
Vary
Performance
Accept-Encoding, Cookie
Caching Headers
6 headers
Age
Caching
43157
Cache-Control
Caching
no-cache, no-store, max-age=0, must-revalidate, private
Etag
Caching
"88acd5db8d2c5fd791aa8648fabea52ed60312b4"
Expires
Caching
0
Last-Modified
Caching
Wed, 15 Jan 2025 18:45:36 GMT
Pragma
Caching
no-cache
Content Headers
2 headers
Content-Length
Content
23309
Content-Type
Content
text/html
Server Headers
1 headers
Server
Server
nginx
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
signup-channels=W3sicCI6IlwvIiwidCI6MTc2NTI3NDc0NH1d|1770458744|4DYQpFMoV+DtfT+Wx22+io0bWHXwElpt8XvjdrrTOhU=; Domain=.quip.com; expires=Sat, 07 Feb 2026 10:05:44 GMT; HttpOnly; Path=/; Secure
Other Headers
2 headers
Date
Other
Tue, 09 Dec 2025 10:05:44 GMT
X-Download-Options
Other
noopen
Recommendations
Enable compression (gzip/brotli) to improve performance
Analysis completed in 582ms