DNS Gurus
Cached · just now
19 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=63072000; includeSubDomains
Content-Security-Policy
Good
default-src; font-src; img-src; +4 more
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Missing
Not configured
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Strengthen CSP by removing 'unsafe-eval'
  • Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers
Connection
Performance
close
Vary
Performance
Accept-Encoding

Caching Headers

2 headers
Cache-Control
Caching
max-age=0, private, must-revalidate
Etag
Caching
W/"96271fa5382e0d267b3e19f7e239c6e0"

Content Headers

2 headers
Content-Length
Content
27795
Content-Type
Content
text/html; charset=utf-8

Server Headers

1 headers
X-Runtime
Server
0.036040

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
_encentge_rails7_session=WM5k1p9lHB7P6Ilx%2BO7myRqMuqx7%2FFGm84nHIQyrYL3u%2B0ZqNIFNvzG2krbOE9aR45GO7V3q3jQDfF03D86Cl3zuHcDch8i0coMGcKVw09tynAifna1oldUb4yNWoYdRbYmEPIrtxE9aK2cebHFF%2Be3h4%2BkeFCLY8iWLfjXvm3EIvftdXOW5KNVTYQ0e5O4jjDpfYvhzqRhhSflDNUC7I95gl7%2Bn3NtdXcx%2F4VX5Co3%2Fx9neG%2FGaajWuAXGCHqB7hpYMeY%2Bz4sz23hBZ1miDeuDYrE2l0%2B4gtHNsWlz3znM%3D--jIwhnbi%2BMfyZVfBZ--XAJ6vWS7DASFah1pC%2B4AQA%3D%3D; path=/; secure; httponly; samesite=lax

Other Headers

5 headers
Date
Other
Sat, 31 Jan 2026 11:11:32 GMT
Feature-Policy
Other
camera 'none'; gyroscope 'none'; geolocation 'none'; microphone 'none'; usb 'none'; fullscreen 'self'; payment 'none'
Link
Other
</assets/application-dec67d87469bceb3bd74946555d70d01c795a2a617bfed17b76815786784ca94.css>; rel=preload; as=style; nopush
X-Permitted-Cross-Domain-Policies
Other
none
X-Request-Id
Other
da40a1f8-0a74-46c5-8f6f-0ea792dd7161

Recommendations

Enable compression (gzip/brotli) to improve performance