DNS Gurus
Cached · just now
28 Headers

Detected Technologies from Headers

See all in URL Inspect 17
Akamai logo Akamai Active incidents Bing logo Bing Facebook logo Facebook Gauthmath logo Gauthmath Google Analytics logo Google Analytics Google Conversion Tracking logo Google Conversion Tracking Google DoubleClick logo Google DoubleClick Google Search logo Google Search Google Static File Front End logo Google Static File Front End Google Tag Manager logo Google Tag Manager Microsoft Clarity logo Microsoft Clarity Nginx logo Nginx TikTok logo TikTok TikTok Analytics logo TikTok Analytics YouTube logo YouTube Google Cloud logo Google Cloud Google Cloud Storage logo Google Cloud Storage

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=31536000 ; includeSubDomains
Content-Security-Policy
Google Analytics logo
Basic
report-uri; report-to; upgrade-insecure-requests; +8 more Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Improve CSP by adding more specific directives and removing 'unsafe-inline'
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

Performance Headers

Connection
Performance
close, Transfer-Encoding
Transfer-Encoding
Performance
chunked

Caching Headers

Cache-Control
Caching
max-age=0, no-cache, no-store
Expires
Caching
Fri, 01 May 2026 13:45:27 GMT
Pragma
Caching
no-cache

Content Headers

Content-Type
Content
text/html; charset=UTF-8

Server Headers

Server
Nginx logo
Server
nginx
X-Powered-By
Server
Goofy Node

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie
Cookies

Other Headers

Date
Other
Fri, 01 May 2026 13:45:27 GMT
Reporting-Endpoints
Other
csp-endpoint="https://mon.gauthai-us.com/monitor_browser/collect/batch/security/?bid=EHI_H5&ev_type=csp&p=jMJf6k1GY6BA4KbmDVSsTh&v=3&s=657&b=oab"
Server-Timing
Other
inner; dur=480,bd-edenx-server-loader-(region$)/layout; dur=0, bd-edenx-server-loader-layout; dur=14.999867, bd-edenx-server-loader-(region$)/page; dur=279.000044, bd-edenx-server-loader;decs="SSR"; dur=282.000065, bd-edenx-ssr-render-html;decs="SSR"; dur=84.000111, bd-edenx-server-handle-request; dur=469.000101, cdn-cache; desc=MISS, edge; dur=1, origin; dur=571
X-Akamai-Request-Id
Other
6c232fc6
X-Bytefaas-Enable-Stream
Other
true
X-Bytefaas-Execution-Duration
Other
472.61
X-Bytefaas-Request-Id
Other
2026050113452757C8A7AA608570262DEE
X-Cache
Akamai logo
Other
TCP_MISS from a23-33-214-124.deploy.akamaitechnologies.com (AkamaiGHost/22.5.1-f3772c509bd97e9cbf399eab359b9b92) (-)
X-Ggw-Config-Version
Other
432061
X-Gw-Dst-Psm
Other
ehi.fe.portal_web_ttp_gs
X-Modernjs-Render
Other
server
X-Origin-Response-Time
Other
572,23.33.214.124
X-Processed-By
Other
Modern.js
X-Tt-Logid
Other
2026050113452757C8A7AA608570262DEE
X-Tt-Trace-Host
Other
01cf956d9198ef431cf8db7ccac30f1a78430724488e20c5f645d2e00ec1e528f5c0c9f65312444c8c3508079b10f653ec1b8ee69d931b3bd2339f471a3b98776cb7a11a39e4e5e5944381e6f00169d8a99234c20f211139b90e2e53fa84a1d298
X-Tt-Trace-Id
Other
00-26050113452757C8A7AA608570262DEE-6ABE7EC669411E0B-00
X-Tt-Trace-Tag
Other
id=16;cdn-cache=miss;type=dyn

Recommendations

Enable compression (gzip/brotli) to improve performance

Consider removing X-Powered-By header to hide server technology