DNS Gurus
Cached · just now
21 Headers

HTTP Security Headers

Status
Strict-Transport-Security
Present
max-age=15768000
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Increase HSTS max-age to at least 1 year and add includeSubDomains
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers
Connection
Performance
close
Vary
Performance
Cookie,Accept-Encoding

Caching Headers

2 headers
Cache-Control
Caching
max-age=0, no-cache, no-store, must-revalidate, private
Expires
Caching
Thu, 15 Jan 2026 11:00:43 GMT

Content Headers

3 headers
Content-Language
Content
fr
Content-Length
Content
86913
Content-Type
Content
text/html; charset=utf-8

Server Headers

1 headers
Server
Server
nginx

CORS Headers

0 headers
No CORS headers found

Cookies Headers

1 headers
Set-Cookie
Cookies
sessionid=xdnpl90xu4acpfkibsqhd34fcy8p0m99; expires=Fri, 16 Jan 2026 11:00:43 GMT; HttpOnly; Max-Age=86400; Path=/; SameSite=Lax; Secure

Other Headers

8 headers
Content-Security-Policy-Report-Only
Other
default-src 'self' * blob: * data: *.youtube.com *.facebook.com connect.facebook.net cdnjs.cloudflare.com www.google.com stats.g.doubleclick.net appvizer.one wss://nexus-websocket-a.intercom.io *.stripe.com *.intercom.io *.hotjar.com *.appvizer.one googletagmanager.com www.googletagmanager.com bat.bing.com snap.licdn.com www.google-analytics.com *.mxpnl.com *.googleapis.com *.gstatic.com dc.ads.linkedin.com snap.licdn.com static.hotjar.com cdn4.mxpnl.com widget.intercom.io google-analytics.com *.mixpanel.com *.intercomcdn.com d3js.org snap.licdn.com www.google-analytics.com/analytics.js cdn4.mxpnl.com/libs/mixpanel-2-latest.min.js 'unsafe-inline' 'unsafe-eval'; report-uri /csp/report/
Date
Other
Thu, 15 Jan 2026 11:00:43 GMT
Via
Other
1.1 ad2604250e9eed83c372fadb62dfeaca.cloudfront.net (CloudFront)
X-Amz-Cf-Id
Other
AHe1sEu8gQCiTb7qOGnUioDE0lLcR8GxmHIe1vn9yOZzXvZZ0tjUeA==
X-Amz-Cf-Pop
Other
IAD61-P1
X-Cache
Other
Miss from cloudfront
X-Iplb-Instance
Other
65975
X-Iplb-Request-Id
Other
12441E0B:A462_36264023:01BB_6968C8DB_B5B7F2:E917

Recommendations

Enable compression (gzip/brotli) to improve performance