Open
Cached
·
just now
27
Headers
Detected Technologies from Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=15552000; preload
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
accelerometer=(), attribution-reporting=(self), autoplay=(); +45 more
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
Performance Headers
Connection
close
Transfer-Encoding
chunked
Vary
Accept-Encoding
connection: close transfer-encoding: chunked vary: Accept-Encoding
Caching Headers
Cache-Control
private, no-cache, no-store, must-revalidate
Expires
Sat, 01 Jan 2000 00:00:00 GMT
Pragma
no-cache
cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT pragma: no-cache
Content Headers
Content-Type
text/html; charset="utf-8"
content-type: text/html; charset="utf-8"
Server Headers
No server headers found
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Accept-Ch
viewport-width,dpr,Sec-CH-Prefers-Color-Scheme,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version,Sec-CH-UA-Model
Accept-Ch-Lifetime
4838400
Alt-Svc
h3=":443"; ma=86400
Date
Tue, 05 May 2026 22:47:38 GMT
Document-Policy
force-load-at-top, include-js-call-stacks-in-crash-reports
Origin-Agent-Cluster
?1
Origin-Trial
ApxEQ+svJ/BvQ8JtSJdDsnwv/gOXedkcox0XU8+snS3w6b4nSgDoyEms+0jGopE4SIRVvlqJmzPHqZYbkP0sxwgAAAB1eyJvcmlnaW4iOiJodHRwczovL3d3dy5mYWNlYm9vay5jb206NDQzIiwiZmVhdHVyZSI6IkNyYXNoUmVwb3J0aW5nU3RvcmFnZUFQSSIsImV4cGlyeSI6MTc3NjcyOTYwMCwiaXNTdWJkb21haW4iOnRydWV9
Report-To
Group
coop_report
max-age: 4w
Group
default
max-age: 3d
Group
permissions_policy
max-age: 6h
Reporting-Endpoints
coop_report="https://www.facebook.com/browser_reporting/coop/?minimize=0", default="https://www.facebook.com/ajax/comet_error_reports/?device_level=unknown&brsid=7636543155021657227&comet_app_key=15&cpp=C3&cv=1038839325&st=1778021258028", permissions_policy="https://www.facebook.com/ajax/browser_error_reports/"
X-Fb-Connection-Quality
UNKNOWN; q=-1, rtt=-1, rtx=0, c=10, mss=1368, tbw=3274, tp=-1, tpl=-1, uplat=259, ullat=0
X-Fb-Debug
BEqc196D8p+VqQm/AujwKrZe6yHj0SjOOlTO0+8g7FTcodU7oA2Upjob1QQh2/1JLOPjitFv8VVh4niDr8S+HQ==
accept-ch: viewport-width,dpr,Sec-CH-Prefers-Color-Scheme,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Platform-Version,Sec-CH-UA-Model
accept-ch-lifetime: 4838400
alt-svc: h3=":443"; ma=86400
date: Tue, 05 May 2026 22:47:38 GMT
document-policy: force-load-at-top, include-js-call-stacks-in-crash-reports
origin-agent-cluster: ?1
origin-trial: ApxEQ+svJ/BvQ8JtSJdDsnwv/gOXedkcox0XU8+snS3w6b4nSgDoyEms+0jGopE4SIRVvlqJmzPHqZYbkP0sxwgAAAB1eyJvcmlnaW4iOiJodHRwczovL3d3dy5mYWNlYm9vay5jb206NDQzIiwiZmVhdHVyZSI6IkNyYXNoUmVwb3J0aW5nU3RvcmFnZUFQSSIsImV4cGlyeSI6MTc3NjcyOTYwMCwiaXNTdWJkb21haW4iOnRydWV9
report-to: {"max_age":2592000,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/coop\/?minimize=0"}],"group":"coop_report","include_subdomains":true}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/comet_error_reports\/?device_level=unknown&brsid=7636543155021657227&comet_app_key=15&cpp=C3&cv=1038839325&st=1778021258028"}]}, {"max_age":21600,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"}
reporting-endpoints: coop_report="https://www.facebook.com/browser_reporting/coop/?minimize=0", default="https://www.facebook.com/ajax/comet_error_reports/?device_level=unknown&brsid=7636543155021657227&comet_app_key=15&cpp=C3&cv=1038839325&st=1778021258028", permissions_policy="https://www.facebook.com/ajax/browser_error_reports/"
x-fb-connection-quality: UNKNOWN; q=-1, rtt=-1, rtx=0, c=10, mss=1368, tbw=3274, tp=-1, tpl=-1, uplat=259, ullat=0
x-fb-debug: BEqc196D8p+VqQm/AujwKrZe6yHj0SjOOlTO0+8g7FTcodU7oA2Upjob1QQh2/1JLOPjitFv8VVh4niDr8S+HQ==
Recommendations
Enable compression (gzip/brotli) to improve performance