DNS Gurus
Open Cached · just now
18 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Weak
frame-ancestors
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Present
ch-dpr=(self "https://imagekit.gallup.com"), ch-width=(self "https://imagekit.gallup.com"), ch-viewport-width=(self "https://imagekit.gallup.com"), ch-save-data=(self "https://imagekit.gallup.com"), ch-downlink=(self "https://imagekit.gallup.com"), ch-ect=(self "https://imagekit.gallup.com"), ch-rtt=(self "https://imagekit.gallup.com")
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Significantly strengthen CSP directives
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)

Performance Headers

1 headers
Connection
Performance
keep-alive

Caching Headers

4 headers
Cache-Control
Caching
public, max-age=63
Etag
Caching
0000b37500e7b7a8
Expires
Caching
Fri, 07 Nov 2025 12:19:05 GMT
Last-Modified
Caching
Fri, 07 Nov 2025 12:18:02 GMT

Content Headers

2 headers
Content-Length
Content
90645
Content-Type
Content
text/html; charset=utf-8

Server Headers

0 headers
No server headers found

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
OriginCookie=k0ms27HZ62AbvchYI4ucowaa; path=/; secure; HttpOnly

Other Headers

7 headers
Accept-Ch
Other
sec-ch-dpr, sec-ch-width, sec-ch-viewport-width, save-data, downlink, ect, rtt
Critical-Ch
Other
sec-ch-dpr, sec-ch-width, sec-ch-viewport-width, save-data
Date
Other
Fri, 07 Nov 2025 12:18:01 GMT
Via
Other
1.1 db50275fc6a3d1f557e22016322e2ba2.cloudfront.net (CloudFront)
X-Amz-Cf-Id
Other
VLIMc1g1GxpMRo8-ZxuiE5L9XBu97_HkVwCbYmUqffyZuYht1EtKAg==
X-Amz-Cf-Pop
Other
IAD12-P2
X-Cache
Other
Miss from cloudfront

Recommendations

Enable compression (gzip/brotli) to improve performance

Analysis completed in 290ms