DNS Gurus
Cached · just now
13 Headers

Detected Technologies from Headers

See all in URL Inspect 10
Apple Pay logo Apple Pay AWS logo AWS Google Search logo Google Search Google Static File Front End logo Google Static File Front End Google Tag Manager logo Google Tag Manager jsDelivr logo jsDelivr Localize.js logo Localize.js New Relic logo New Relic Stytch logo Stytch Google Cloud logo Google Cloud

HTTP Security Headers

Status
Strict-Transport-Security
Good
max-age=31536000; includeSubDomains
Content-Security-Policy
Apple Pay logo
Basic
upgrade-insecure-requests; object-src; script-src; +3 more Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Present
display-capture=(), usb=(), geolocation=*; +3 more
Recommendations
  • Consider adding 'preload' to HSTS for maximum security
  • Improve CSP by adding more specific directives and removing 'unsafe-inline'
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking

Performance Headers

Connection
Performance
close
Transfer-Encoding
Performance
chunked

Caching Headers

Cache-Control
Caching
no-cache
Expires
Caching
Thu, 01 Jan 1970 00:00:01 GMT

Content Headers

Content-Type
Content
text/html

Server Headers

No server headers found

CORS Headers

No CORS headers found

Cookies Headers

No cookies headers found

Other Headers

Date
Other
Fri, 08 May 2026 07:40:03 GMT
Reporting-Endpoints
Other
csp-endpoint=https://report.centralcsp.com/69a6e5530fbe4db01784178a

Recommendations

Enable compression (gzip/brotli) to improve performance