DNS Gurus
Open Cached · just now
21 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers
Connection
Performance
close
Transfer-Encoding
Performance
chunked
Vary
Performance
Accept-Encoding

Caching Headers

1 headers
Cache-Control
Caching
max-age=0, private, must-revalidate

Content Headers

1 headers
Content-Type
Content
text/html

Server Headers

2 headers
Server
Server
cloudflare
X-Runtime
Server
0.010878

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
__cf_bm=1qoZXVrS.2ei5BGR.AiuEB2EJ9US2kCJKzbBWX4MS_8-1764311963-1.0.1.1-UQZu4GQ1VeQiVxkqEz.zkdCFJEdcPrX3NOFnuZzBcLajlH0TXlJCCr5odp.a5Ha8u.a4PJkF19wH6Q2Z_0jmNyDrjg0wzMPb076AE0oFvf8; path=/; expires=Fri, 28-Nov-25 07:09:23 GMT; domain=.freshteam.com; HttpOnly; Secure; SameSite=None

Other Headers

12 headers
Cf-Cache-Status
Other
DYNAMIC
Cf-Ray
Other
9a57de2b0c83206f-IAD
Content-Security-Policy-Report-Only
Other
default-src 'none';script-src 'unsafe-eval' 'self' blob: https://fast.wistia.com https://assets.calendly.com/assets/external/widget.js https://embed.cloudflarestream.com https://stats.pusher.com/ https://*.flickr.com https://s.imgur.com https://*.pinterest.com https://www.instagram.com https://conv.indeed.com https://code.jquery.com https://cdn.jsdelivr.net https://*.appcues.com https://*.kaspersky-labs.com https://api.autopilothq.com https://apis.google.com https://app.getbeamer.com https://assets.freshdesk.com https://*.freshteam.com https://bam.nr-data.net https://cdn.ckeditor.com https://*.freshmarketer.com https://cdn.heapanalytics.com https://heapanalytics.com https://cdnjs.cloudflare.com https://connect.facebook.net https://global.localizecdn.com https://graph.facebook.com https://inlinemanual.com https://js-agent.newrelic.com https://js.chargebee.com https://js.hs-banner.com https://js.hs-scripts.com https://platform.linkedin.com https://platform.twitter.com https://polyfill.io https://ssl.google-analytics.com https://static.freshhr.com https://static.freshteam.com https://support.freshteam.com https://static.freshdev.io https://translate.google.com https://translate.googleapis.com https://wchat.freshchat.com https://www.google-analytics.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://*.freshworks.com https://agent.newrelic.com https://ajax.cloudflare.com https://static.freshcloud.io https://*.osano.com https://*.fullstory.com https://fullstory.com https://*.freshworksapi.com https://cdn.freshbots.ai https://cdn.in-freshbots.ai https://s3.amazonaws.com/support.freshteam.com/assets/js/jquery-ui.min.js https://realtime.getbeamer.com/socket.io/socket.io.js https://bam-cell.nr-data.net https://cdn.surveyserv.com https://cdn.freshdev.io https://ajax.cloudflare.com/ https://static.cloudflareinsights.com/;font-src * 'self' data: https://*.kaspersky-labs.com https://fonts.googleapis.com https://fonts.gstatic.com https://static.freshteam.com https://static.freshhr.com https://heapanalytics.com;connect-src 'self' https://embedwistia-a.akamaihd.net https://*.litix.io https://*.wistia.com https://videodelivery.net https://*.freshworks.com wss://*.appcues.net https://translate.googleapis.com https://tp.zarget.com https://*.freshteam.com https://*.freshmarketer.com https://api.autopilothq.com https://web.delighted.com wss://ws.pusherapp.com https://analytics.inlinemanual.com https://bam.nr-data.net https://inlinemanual.com https://pubsub.rtschannel.com https://pubsub.rtschannel.io wss://pubsub.rtschannel.com wss://pubsub.rtschannel.io https://static.freshhr.com https://backend.getbeamer.com https://*.appcues.net https://*.appcues.com https://s3.amazonaws.com https://global.localizecdn.com https://*.kaspersky-labs.com wss://*.kaspersky-labs.com https://localhost:10001 http://localhost:10001 https://www.google-analytics.com https://rs.fullstory.com https://*.freshworksapi.com wss://*.freshworksapi.com https://www.freshbots.ai https://www.in-freshbots.ai/ wss://ws-mt1.pusher.com http://sock13-ap2.pusher.com http://sockjs-ap2.pusher.com https://sock14-ap2.pusher.com https://timeline52-clientstats1.pusher.com https://heapanalytics.com https://rum.haystack.es/freshteam/analytics https://rum.stage.haystack.es/freshteam/analytics https://ind-widget.freshworks.com/widgets/ https://ind-widget.freshworks.com/widgetBase/ https://*.freshdesk.com/api/widget/ https://bam-cell.nr-data.net https://*.freshdesk.com https://*.freshdesk.com/api/widget/ https://surveyserv-public.freshworksapi.com https://cloudflareinsights.com/;img-src * data: https://*.kaspersky-labs.com https://media.licdn.com https://static.freshteam.com https://static.freshhr.com https://www.gravatar.com https://www.gstatic.com https://www.instagram.com https://rs.fullstory.com https://heapanalytics.com;style-src 'unsafe-inline' 'self' https://code.jquery.com https://cdn.in-freshbots.ai https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://*.appcues.com https://*.appcues.net https://translate.googleapis.com https://toolbar.freshmarketer.com https://*.freshworks.com https://*.freshteam.com https://wchat.freshchat.com https://assets.freshdesk.com https://cdn.ckeditor.com https://fonts.googleapis.com https://inlinemanual.com https://www.gstatic.com https://s3.amazonaws.com https://app.getbeamer.com https://*.kaspersky-labs.com https://s3.eu-central-1.amazonaws.com https://cdn.freshbots.ai https://heapanalytics.com https://static.freshhr.com/ https://static.freshteam.com/ https://ind-widget.freshworks.com/widgetBase/;media-src 'self' blob: data: https://*.kaspersky-labs.com https://embedwistia-a.akamaihd.net https://s3.amazonaws.com https://static.freshteam.com https://static.freshhr.com https://videodelivery.net;frame-src 'self' https://api.autopilothq.com https://*.freshreports.com https://freshservice.com https://calendly.com https://*.appcues.com https://freshdesk.com https://*.chargebee.com https://*.freshworks.com https://talkgadget.google.com https://sleepplaciduttermosthomely.freshworksweb.com/ https://galaxyeliminatekneepassage.freshworksweb.com/ https://platform.twitter.com https://*.webpush.freshchat.com https://*.freshchat.com https://*.freshteam.com https://*.freshhr.com https://platform.linkedin.com https://staticxx.facebook.com https://www.facebook.com https://s3.amazonaws.com https://files.freshteam-staging.com/ https://docs.google.com https://www.google.com https://staging.freshreports.com/ https://*.appgallery.freshworks.com https://*.appgallery-staging.freshcloud.io https://*.getbeamer.com https://www.youtube.com https://fast.wistia.net https://*.wistia.com https://player.vimeo.com https://www.instagram.com https://www.linkedin.com https://imgur.com https://*.kaspersky-labs.com http://localhost:10001 https://d3h0owdjgzys62.cloudfront.net https://*.freshworks360.io/ https://*.myfreshworks.dev/ https://*.myfreshworks.com https://*.freshworksapi.com/ https://freshworks.com https://s3.eu-central-1.amazonaws.com https://videos.sproutvideo.com https://www.dailymotion.com http://www.cincopa.com https://players.brightcove.net https://cdn.jwplayer.com https://apps.wix.com https://play.vidyard.com https://*.jobtarget.com https://*.freshworks.com https://ind-widget.freshworks.com/widgets/ https://*.freshchat.com/ https://cdn.freshdev.io https://fresh.enact-systems.com;report-uri https://cspreports.freshteam.com/report;
Date
Other
Fri, 28 Nov 2025 06:39:23 GMT
Nel
Other
{ "report_to": "nel-endpoint-freshteam", "max_age": 2592000, "include_subdomains": true}
Report-To
Other
{ "group": "nel-endpoint-freshteam", "max_age": 2592000, "include_subdomains": true, "endpoints": [{"url": "https://edge-admin.us-east-1.freshedge.net/nelreports/freshteam"}]}
X-Envoy-Upstream-Service-Time
Other
16
X-Fw-Ratelimiting-Managed
Other
false
X-Rack-Cors
Other
miss; no-origin
X-Request-Id
Other
b30d549c-d392-4e2a-a94d-ea80acf98449
X-Server-Processing-Time-Ms
Other
17
X-Trace-Id
Other
00-fb81ee3d4c0c009207cf6b786239c4cc-5d0ccc60ec826be8-00

Recommendations

Enable compression (gzip/brotli) to improve performance

Analysis completed in 152ms