Open
Cached
·
just now
26
Headers
Detected Technologies from Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=15552000; includeSubDomains
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer
Permissions-Policy
Present
fullscreen=(self "https://contracts.liberis.com"), geolocation=(), camera=()
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
Performance Headers
Accept-Ranges
bytes
Connection
close
accept-ranges: bytes connection: close
Caching Headers
Cache-Control
no-store, no-cache, must-revalidate, proxy-revalidate
Etag
W/"b11-SUhUEWX6SwHjfqM3TeZHaPNuvqg"
Expires
0
Pragma
no-cache
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate etag: W/"b11-SUhUEWX6SwHjfqM3TeZHaPNuvqg" expires: 0 pragma: no-cache
Content Headers
Content-Length
2833
Content-Type
text/html; charset=utf-8
content-length: 2833 content-type: text/html; charset=utf-8
Server Headers
No server headers found
CORS Headers
Access-Control-Allow-Origin
*
access-control-allow-origin: *
Cookies Headers
Other Headers
Date
Tue, 28 Apr 2026 18:34:04 GMT
Origin-Agent-Cluster
?1
Surrogate-Control
no-store
X-Azure-Ref
20260428T183404Z-166dfd4f7b6v7mtshC1IADep040000000h40000000007s8y
X-Cache
CONFIG_NOCACHE
X-Dns-Prefetch-Control
off
X-Download-Options
noopen
X-Permitted-Cross-Domain-Policies
none
date: Tue, 28 Apr 2026 18:34:04 GMT origin-agent-cluster: ?1 surrogate-control: no-store x-azure-ref: 20260428T183404Z-166dfd4f7b6v7mtshC1IADep040000000h40000000007s8y x-cache: CONFIG_NOCACHE x-dns-prefetch-control: off x-download-options: noopen x-permitted-cross-domain-policies: none
Recommendations
Enable compression (gzip/brotli) to improve performance