DNS Gurus
Open Cached · 1h ago
19 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Excellent
max-age=31536000; includeSubDomains; preload
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
no-referrer-when-downgrade
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Consider adding Permissions-Policy to control browser features

Performance Headers

1 headers
Connection
Performance
keep-alive

Caching Headers

5 headers
Cache-Control
Caching
no-cache, no-store
Etag
Caching
W/"420-19a31b3db30"
Expires
Caching
-1
Last-Modified
Caching
Wed, 29 Oct 2025 20:41:02 GMT
Pragma
Caching
no-cache

Content Headers

2 headers
Content-Length
Content
1056
Content-Type
Content
text/html; charset=utf-8

Server Headers

0 headers
No server headers found

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
ak_bmsc=B4337DD93DFE6C5427DF423FE2BB2B5B~000000000000000000000000000000~YAAQSMgwF1itLj6aAQAApqQOeB1upBDIckqSEcqgJD+4XCcl50wTyRQXDYF7oekqtl6cJEQQ5JTtu6FZA+NfN0+9WvisGestTLmELmOQeCqYwydtqvoQrlNCT+JWuR+dh//n9zkgmtnNPpl8Pm3YbOeDvsMmxuBiod1xQgi0ajawn8TpyUNLlmzdxSZJQsD+EVBy9UUuM+g0b59oH7lEEB/96IBZy9gKD1/b28ZA5Nus2my70bd2B86qMhxBD3tvwjgN57SUXOLwYMC24VfkCWe5Rh699oODvwMC/OMg36o202PuGKKFfofZg2Gmh29SxS4lkDkZIZL+yq/iXXKI5kFaWx9QqUEiuOocJsEhjijYtYw=; Domain=.s4.exacttarget.com; Path=/; Expires=Wed, 12 Nov 2025 14:33:36 GMT; Max-Age=7200; HttpOnly

Other Headers

6 headers
Content-Security-Policy-Report-Only
Other
default-src 'self';script-src 'self' www.google-analytics.com;img-src 'self' www.google-analytics.com;style-src 'self';frame-ancestors 'self' *.aws.sfdc.cl *.exacttarget.com *.marketingcloudapps.com *.marketingclouddevapps.com *.marketingcloudqaapps.com *.marketingcloudtestapps.com *.marketingcloudstageapps.com *.marketingcloudapps.local *.marketingcloudapps.local.sfdc.net *.local.sfdc.net *.exct.net *.salesforce.com *.aws-dev2-uswest2.aws.sfdc.cl
Date
Other
Wed, 12 Nov 2025 12:33:36 GMT
P3p
Other
policyref="http://pages.exacttarget.com/page.aspx?QS=330c754b5e92df74cf6675798b4159946dab33040502ce179f6e05b2a423e51a", CP="OTI DSP COR CURa ADMa DEVa IVAa IVDa HISa OTPa OUR IND INT"
X-Dns-Prefetch-Control
Other
off
X-Download-Options
Other
noopen
X-Permitted-Cross-Domain-Policies
Other
none

Recommendations

Enable compression (gzip/brotli) to improve performance

Analysis completed in 217ms