DNS Gurus
Cached · just now
18 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin
Permissions-Policy
Missing
Not configured
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Consider adding Permissions-Policy to control browser features

Performance Headers

Connection
Performance
close
Transfer-Encoding
Performance
chunked
Vary
Performance
Authorization, Accept-Language, Accept-Encoding

Caching Headers

Cache-Control
Caching
no-store, no-cache

Content Headers

Content-Type
Content
application/json; charset=utf-8

Server Headers

No server headers found

CORS Headers

No CORS headers found

Cookies Headers

No cookies headers found

Other Headers

Date
Other
Wed, 15 Apr 2026 19:06:24 GMT
Server-Timing
Other
x-ms-igw-upstream-headers;dur=2.7,x-ms-igw-req-overhead;dur=0.2
X-Ms-Activity-Vector
Other
00.00.00
X-Ms-Correlation-Id
Other
b109b944-f833-4bff-b803-79a16d4089fd
X-Ms-Correlation-Request-Id
Other
b109b944-f833-4bff-b803-79a16d4089fd
X-Ms-Igw-Tracking-Id
Other
436e1610-1e15-4bc2-90a9-b036dfb1d28f20260415190625GA000000J
X-Ms-Islandgateway
Other
GA000000J
X-Ms-Request-Id
Other
usgov.usgovvirginia:f7fefc26-6dc7-4d53-8e7d-d79c0185c537
X-Ms-Service-Request-Id
Other
436e1610-1e15-4bc2-90a9-b036dfb1d28f
X-Servicefabric
Other
NoRetry

Recommendations

Enable compression (gzip/brotli) to improve performance