Open
Cached
·
just now
24
Headers
Detected Technologies from Headers
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=63072000; includeSubDomains; preload
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Accept-Ranges
bytes
Connection
close
Vary
RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding,Origin
accept-ranges: bytes connection: close vary: RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding,Origin
Caching Headers
Age
60
Cache-Control
public, max-age=60, stale-while-revalidate=60
age: 60 cache-control: public, max-age=60, stale-while-revalidate=60
Content Headers
Content-Length
368695
Content-Type
text/html; charset=utf-8
content-length: 368695 content-type: text/html; charset=utf-8
Server Headers
X-Powered-By
Next.js
x-powered-by: Next.js
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Date
Fri, 01 May 2026 14:40:50 GMT
Link
rel=preload
as=font
crossorigin
type=font/woff2
rel=preload
as=font
crossorigin
type=font/woff2
rel=preload
as=font
crossorigin
type=font/woff2
Via
1.1 63560dd3f856b0f7bfe68a0cad46924a.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish
X-Amz-Cf-Id
sqB_Mrx_k2KQ3nyyE_EKG-PzIVx8hgE9Si8uChLFlNZxs9l5fxOnXg==
X-Amz-Cf-Pop
SEA900-P9
X-Amzn-Remapped-Connection
keep-alive
X-Amzn-Remapped-Date
Fri, 01 May 2026 14:39:50 GMT
X-Amzn-Requestid
63e25531-e2f5-4a73-9513-9dbde07cf0df
X-Amzn-Trace-Id
Root=1-69f4bb36-5d1a4d714d89cd2c051cc5a5;Parent=0706ba3248a27a48;Sampled=0;Lineage=1:ca9b16fd:0
X-Cache
Miss from cloudfront, HIT, MISS
X-Cache-Hits
1, 0
X-Correlation-Id
e6cb4dea-9945-4453-a47b-b36c9e58506a
X-Served-By
cache-bfi-kbfi7400107-BFI, cache-ewr-kewr1740043-EWR
X-Timer
S1777646450.122520,VS0,VE68
date: Fri, 01 May 2026 14:40:50 GMT link: <https://cf.nmws.nearmap.com/static/_next/static/media/baf189c215c76387-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://cf.nmws.nearmap.com/static/_next/static/media/bd5cb8d9c6fd6413-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2", <https://cf.nmws.nearmap.com/static/_next/static/media/f7e28de6d6bf52b7-s.p.woff2>; rel=preload; as="font"; crossorigin=""; type="font/woff2" via: 1.1 63560dd3f856b0f7bfe68a0cad46924a.cloudfront.net (CloudFront), 1.1 varnish, 1.1 varnish x-amz-cf-id: sqB_Mrx_k2KQ3nyyE_EKG-PzIVx8hgE9Si8uChLFlNZxs9l5fxOnXg== x-amz-cf-pop: SEA900-P9 x-amzn-remapped-connection: keep-alive x-amzn-remapped-date: Fri, 01 May 2026 14:39:50 GMT x-amzn-requestid: 63e25531-e2f5-4a73-9513-9dbde07cf0df x-amzn-trace-id: Root=1-69f4bb36-5d1a4d714d89cd2c051cc5a5;Parent=0706ba3248a27a48;Sampled=0;Lineage=1:ca9b16fd:0 x-cache: Miss from cloudfront, HIT, MISS x-cache-hits: 1, 0 x-correlation-id: e6cb4dea-9945-4453-a47b-b36c9e58506a x-served-by: cache-bfi-kbfi7400107-BFI, cache-ewr-kewr1740043-EWR x-timer: S1777646450.122520,VS0,VE68
Recommendations
Enable compression (gzip/brotli) to improve performance
Consider removing X-Powered-By header to hide server technology