Open
Cached
·
just now
29
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Excellent
max-age=31536000; includeSubDomains; preload
Content-Security-Policy
Good
default-src; connect-src; font-src; +7 more
default-src 'self' d30ia583fbtg8i.cloudfront.net cdn.cookielaw.org www.google-analytics.com *.hidglobal.com *.hid.gl *.mktoresp.com sentry.io www.trustradius.com *.zoominfo.com; connect-src 'self' *.6sc.co *.6sense.com *.adobe.io wss://*.adobe.io insights.algolia.io *.algolia.net *.algolianet.com bat.bing.com *.clarity.ms d30ia583fbtg8i.cloudfront.net dudodiprj2sv7.cloudfront.net cdn.cookielaw.org stats.g.doubleclick.net analytics.google.com www.google-analytics.com www.google.com pagead2.googlesyndication.com *.hidglobal.com *.interactivecalculator.com gmc.lingotek.com px.ads.linkedin.com 289-tsc-352.mktoresp.com 874-yjr-516.mktoweb.com *.omappapi.com siteintercept.qualtrics.com hidglobal.my.salesforce-sites.com www.trustradius.com p.typekit.net use.typekit.net upload.uploadcare.com js.zi-scripts.com *.zoominfo.com https://www.google-analytics.com https://www.googletagmanager.com https://metrics.hidglobal.com/; font-src 'self' maxcdn.bootstrapcdn.com d30ia583fbtg8i.cloudfront.net dudodiprj2sv7.cloudfront.net fonts.gstatic.com *.interactivecalculator.com www.trustradius.com use.typekit.net p.typekit.net; frame-src 'self' documentcloud.adobe.com bugcrowd.com d30ia583fbtg8i.cloudfront.net bid.g.doubleclick.net hidglobal-communities.force.com hidglobal.force.com hidglobal.secure.force.com *.visual.force.com hidglobal.formstack.com www.google.com www.google-analytics.com www.googletagmanager.com indd.adobe.com info.hidglobal.com *.interactivecalculator.com html5-player.libsyn.com 874-yjr-516.mktoweb.com hid-mobile.netlify.app hid-mobile-access-cn.netlify.app hid-mobile-access-fr.netlify.app hid-mobile-access-jp.netlify.app hid-mobile-access-kr.netlify.app *.my.salesforce.com hidglobal.my.salesforce.com hidglobal.my.salesforce-sites.com hidglobal.my.site.com sketchfab.com open.spotify.com cdn.thinglink.me www.trustradius.com player.vimeo.com; img-src 'self' data: *.6sc.co assets.adoberesources.net s3.amazonaws.com bat.bing.com ct.capterra.com *.clarity.ms d30ia583fbtg8i.cloudfront.net cdn.cookielaw.org stats.g.doubleclick.net www.facebook.com www.google.com tagmanager.google.com ssl.google-analytics.com www.google-analytics.com www.googletagmanager.com lh3.googleusercontent.com ssl.gstatic.com www.gstatic.com *.hid.gl *.hidglobal.com hidglobal.com www.hidglobal.cn *.interactivecalculator.com gmc.lingotek.com px.ads.linkedin.com 874-yjr-516.mktoweb.com *.omappapi.com wec-assets.terminus.services cdn.thinglink.me media.trustradius.com www.trustradius.com ucarecdn.com i.vimeocdn.com i.ytimg.com https://www.google-analytics.com https://www.googletagmanager.com; script-src 'self' 'unsafe-inline' *.6sc.co documentcloud.adobe.com assets.adoberesources.net bat.bing.com sjs.bizographics.com bugcrowd.com assets.bugcrowdusercontent.com www.clarity.ms d30ia583fbtg8i.cloudfront.net cdn.cookielaw.org googleads.g.doubleclick.net connect.facebook.com connect.facebook.net apis.google.com www.google.com tagmanager.google.com www.googleadservices.com www.google-analytics.com ajax.googleapis.com www.googleapis.com www.googletagmanager.com www.gstatic.com *.hidglobal.com info.hidglobal.com *.interactivecalculator.com https://cdn.jsdelivr.net snap.licdn.com px.ads.linkedin.com www.linkedin.com munchkin.marketo.net 874-yjr-516.mktoweb.com *.omappapi.com *.siteintercept.qualtrics.com siteintercept.qualtrics.com hidglobal.my.salesforce-sites.com vidassets.terminus.services wec-assets.terminus.services www.thinglink.com cdn.thinglink.me www.trustradius.com ucarecdn.com js.zi-scripts.com *.zoominfo.com gmc.lingotek.com https://cdnjs.cloudflare.com https://d3js.org https://embed.interactivecalculator.com https://metrics.hidglobal.com/; script-src-elem 'self' 'unsafe-inline' *.6sc.co documentcloud.adobe.com assets.adoberesources.net bat.bing.com sjs.bizographics.com bugcrowd.com assets.bugcrowdusercontent.com www.clarity.ms d30ia583fbtg8i.cloudfront.net cdn.cookielaw.org googleads.g.doubleclick.net connect.facebook.com connect.facebook.net apis.google.com www.google.com tagmanager.google.com www.googleadservices.com www.google-analytics.com ajax.googleapis.com www.googleapis.com www.googletagmanager.com www.gstatic.com *.hidglobal.com info.hidglobal.com *.interactivecalculator.com https://cdn.jsdelivr.net snap.licdn.com px.ads.linkedin.com www.linkedin.com munchkin.marketo.net 874-yjr-516.mktoweb.com *.omappapi.com *.siteintercept.qualtrics.com siteintercept.qualtrics.com hidglobal.my.salesforce-sites.com vidassets.terminus.services wec-assets.terminus.services www.thinglink.com cdn.thinglink.me www.trustradius.com ucarecdn.com js.zi-scripts.com *.zoominfo.com gmc.lingotek.com https://cdnjs.cloudflare.com https://d3js.org https://embed.interactivecalculator.com; style-src 'self' 'unsafe-inline' maxcdn.bootstrapcdn.com d30ia583fbtg8i.cloudfront.net tagmanager.google.com fonts.googleapis.com info.hidglobal.com *.interactivecalculator.com 874-yjr-516.mktoweb.com *.omappapi.com hidglobal.my.salesforce-sites.com cdn.thinglink.me www.trustradius.com p.typekit.net use.typekit.net gmc.lingotek.com https://cdnjs.cloudflare.com https://use.typekit.net; form-action 'self' d30ia583fbtg8i.cloudfront.net *.ddev.site www.google-analytics.com *.hid.gl *.hidglobal.com info.hidglobal.com *.interactivecalculator.com *.mktoresp.com 874-yjr-516.mktoweb.com hidglobal.qualtrics.com webto.salesforce.com sentry.io www.trustradius.com; frame-ancestors 'self' hidglobal.com www.hidglobal.com
X-Frame-Options
Present
ALLOW-FROM https://hidglobal.com
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Strengthen CSP by removing 'unsafe-eval'
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
4 headers
Accept-Ranges
Performance
bytes
Connection
Performance
close
Transfer-Encoding
Performance
chunked
Vary
Performance
Cookie, Accept-Encoding
Caching Headers
4 headers
Age
Caching
2248
Cache-Control
Caching
public, max-age=3600
Expires
Caching
Sat, 17 Jan 2026 01:55:03 GMT
Last-Modified
Caching
Sat, 17 Jan 2026 00:15:48 GMT
Content Headers
2 headers
Content-Language
Content
en
Content-Type
Content
text/html; charset=UTF-8
Server Headers
1 headers
Server
Server
cloudflare
CORS Headers
1 headers
Access-Control-Allow-Credentials
Cors
false
Cookies Headers
1 headers
Set-Cookie
Cookies
__cf_bm=lm2n9.r1xWyFUTyCnx_FkmJDkjC3veOMI9YB9wzIAio-1768611303-1.0.1.1-I1WQ0wANe2vYq0rrEvlcUDwg7IpVsJu4uTT2xvECEaTIgT8NA..yqhgzWA79VMlhSydfm8r4dGVdir0hXKP.igCZL6aodZGpc5WWjqEVndc; path=/; expires=Sat, 17-Jan-26 01:25:03 GMT; domain=.hidglobal.com; HttpOnly; Secure; SameSite=None
Other Headers
12 headers
Cf-Cache-Status
Other
HIT
Cf-Ray
Other
9bf1e285aeb7058d-IAD
Date
Other
Sat, 17 Jan 2026 00:55:03 GMT
Traceresponse
Other
00-188b5c77d19a58d87946c7fe4d29081a-68a5b81619c079bc-01
X-Debug-Info
Other
eyJyZXRyaWVzIjowfQ==
X-Drupal-Cache
Other
MISS
X-Drupal-Dynamic-Cache
Other
MISS
X-Generator
Other
Drupal 10 (https://www.drupal.org)
X-Platform-Cache
Other
MISS
X-Platform-Cluster
Other
bxoswykcdoxog-master-7rqtwti
X-Platform-Processor
Other
k334oxtjqfy47abj2tihrsunka
X-Platform-Router
Other
dff4nlk3zeprkbsgtell7hxloe
Recommendations
Enable compression (gzip/brotli) to improve performance