HTTP Headers Analysis for https://exclaimer.com

Detected Technologies from Headers

See all in URL Inspect 69

Google AdSense

Chili Piper

Google Tag Manager

Bing

G2

Spotify

SurveyMonkey

Sovrn

SalesLoft

Google Hosted Libraries

AppNexus (Xandr)

Mutiny

Netlify

OpenX

Yahoo

Tapad

Liveramp

HubSpot Forms

Capterra

Google DoubleClick

AdRoll

Google Analytics

Microsoft Advertising

Google Conversion Tracking

6sense

Cloudflare CDN Active incidents

Greenhouse

Google Static File Front End

Outbrain

Calendly

Google Fonts

Wistia

Twitter

Intent IQ

Cloudflare Web Analytics

Hotjar

PubMatic

Zendesk

ZoomInfo Active incidents

Contentsquare

HubSpot Analytics

Drift

Mapbox

Google Search

BootstrapCDN

Navattic

Facebook

Amazon S3

StackAdapt

OneTrust

TripleLift

Storyblok

Heap

Salesforce Pardot

Taboola

Rubicon Project

Vimeo

Google Optimize

HubSpot

YouTube

The Trade Desk

Optimizely

Sentry

jsDelivr

Google Cloud

Microsoft Azure

Google Cloud Storage

HTTP Security Headers

Status

Strict-Transport-Security

Good

max-age=31536000; includeSubDomains

Content-Security-Policy

Basic

default-src; script-src; img-src; +5 more Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Present

camera=(), microphone=(), geolocation=()

Recommendations

• Consider adding 'preload' to HSTS for maximum security
• Improve CSP by adding more specific directives and removing 'unsafe-inline'

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding

connection: close
transfer-encoding: chunked
vary: Accept-Encoding

Caching Headers

Age

Caching

2819

Cache-Control

Caching

public,max-age=0,must-revalidate

age: 2819
cache-control: public,max-age=0,must-revalidate

Content Headers

Content-Type

Content

text/html; charset=utf-8

content-type: text/html; charset=utf-8

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: country=US; Path=/; Expires=Wed, 06 May 2026 00:34:40 GMT; Max-Age=604800; Secure; SameSite=lax
__cf_bm=AtYDgOT.bcc6oS90DIYswiZTMoslsq7eU_ephjaA0XM-1777422880.6215916-1.0.1.1-.ZNyOiWd1k.um4DlxWIqt9MFn0GMjc.oSh6SylNuF0XeLDReFGl_fir_E028nb0XrGqZ9wlg_2FBP_0NSWr7VhihorMpGOZUVmcKRAxuxXMKdClSqfRWcUa5wuLD3JGh; HttpOnly; Secure; Path=/; Domain=exclaimer.com; Expires=Wed, 29 Apr 2026 01:04:40 GMT

Other Headers

Cache-Status

Other

"Netlify Edge"; hit

Cf-Cache-Status

Other

DYNAMIC

Cf-Ray

Other

9f3a38ebef09e6cc-IAD

Date

Other

Wed, 29 Apr 2026 00:34:40 GMT

Netlify-Vary

Other

Server-Timing

Other

cfCacheStatus;desc="DYNAMIC", cfEdge;dur=19,cfOrigin;dur=65

X-Dns-Prefetch-Control

Other

on

X-Middleware-Set-Cookie

Other

country=US; Path=/; Expires=Wed, 06 May 2026 00:34:40 GMT; Max-Age=604800; Secure; SameSite=lax

X-Nf-Request-Id

Other

01KQBAHKW7N3CTFHH51BGH9ZHH

cache-status: "Netlify Edge"; hit
cf-cache-status: DYNAMIC
cf-ray: 9f3a38ebef09e6cc-IAD
date: Wed, 29 Apr 2026 00:34:40 GMT
netlify-vary: query=__nextDataReq|_rsc,header=x-nextjs-data|x-next-debug-logging|next-router-prefetch|next-router-segment-prefetch|next-router-state-tree|next-url|rsc|accept-encoding,cookie=__prerender_bypass|__next_preview_data
server-timing: cfCacheStatus;desc="DYNAMIC", cfEdge;dur=19,cfOrigin;dur=65
x-dns-prefetch-control: on
x-middleware-set-cookie: country=US; Path=/; Expires=Wed, 06 May 2026 00:34:40 GMT; Max-Age=604800; Secure; SameSite=lax
x-nf-request-id: 01KQBAHKW7N3CTFHH51BGH9ZHH

Recommendations

Enable compression (gzip/brotli) to improve performance