HTTP Headers Analysis for https://lekab.com

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31536000

Content-Security-Policy

Weak

upgrade-insecure-requests

X-Frame-Options

Excellent

DENY

X-Content-Type-Options

Missing

Not configured

Referrer-Policy

Good

no-referrer-when-downgrade

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Significantly strengthen CSP directives
• Add X-Content-Type-Options: nosniff
• Consider adding Permissions-Policy to control browser features

Performance Headers

2 headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Caching Headers

2 headers

Cache-Control

Caching

no-store, no-cache, must-revalidate

Last-Modified

Caching

Thu, 22 Jan 2026 01:39:50 GMT

Content Headers

1 headers

Content-Type

Content

text/html; charset=UTF-8

Server Headers

1 headers

Server

cloudflare

CORS Headers

0 headers

No CORS headers found

Cookies Headers

1 headers

Set-Cookie

Cookies

_cfuvid=gytZQqjXQ29I9JxXBWTWnOEHlmu82qdjwyXuBYiL_ew-1769060795532-0.0.1.1-604800000; path=/; domain=.www.lekab.com; HttpOnly; Secure; SameSite=None

Other Headers

15 headers

Alt-Svc

Other

h3=":443"; ma=86400

Cf-Ray

Other

9c1cc073bce605be-IAD

Date

Other

Thu, 22 Jan 2026 05:46:35 GMT

Edge-Cache-Tag

Other

CT-48689736047,CT-55156224262,P-7142379,W-1637230673155,W-165901145526,W-1718876676362,W-1718878634590,W-1718886585842,W-1718890579882,W-1718892087822,W-1734961826719,W-1738067280849,W-1747120416552,W-1747306544584,W-47972455756,CW-142669325670,CW-147950946712,CW-149415107183,CW-158843162219,CW-160833171843,CW-165893017233,CW-165901351984,CW-169251581848,CW-186850458240,CW-187951422084,CW-188608683183,CW-46815126709,CW-47543085584,CW-47969532238,CW-47972404082,CW-47973439571,CW-47974716805,CW-48027791912,DB-18997626,DB-4691226,E-186850457463,E-186900674342,E-186901999286,E-186904842003,E-186904921699,E-186904992617,E-186907037100,E-186909628598,E-186911316326,E-186997538703,E-187617662816,E-187970009736,E-46504485244,E-46504595067,E-46504993586,E-46504994052,E-46505020066,E-85464820024,MENU-165901145526,MENU-47972455756,PGS-ALL,SW-2,GC-165893597534,GC-165901712152,GC-170660509190,GC-188153614617,GC-47970293265,GC-47970719158,GC-47973668729,GC-53554337931,TS-46504485239

Link

Other

</hs/hsstatic/jquery-libs/static-1.1/jquery/jquery-1.7.1.js>; rel=preload; as=script,<https://www.lekab.com/hubfs/hub_generated/template_assets/1/46504994052/1765787942193/template_style.min.css>; rel=preload; as=style,<https://cdn.jsdelivr.net/npm/@splidejs/[email protected]/dist/css/splide.min.css>; rel=preload; as=style,<https://www.lekab.com/hubfs/hub_generated/module_assets/1/47543085584/1742066818120/module_Dazy_-_Form_and_text_columns.min.css>; rel=preload; as=style,<https://cdn.jsdelivr.net/npm/@splidejs/[email protected]/dist/js/splide.min.js>; rel=preload; as=script,<https://fonts.gstatic.com>; rel=preconnect,<https://fonts.googleapis.com/css2?family=Open+Sans:ital,wght@0,300;0,400;0,500;0,600;0,700;1,300;1,400;1,500;1,600;1,700&display=swap>; rel=preload; as=style,<https://cdn.jsdelivr.net/npm/macy@2>; rel=preload; as=script

Nel

Other

{"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}

Report-To

Other

{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RUJYIkGMBZk8qsqoIT63SFNzdN0TDhuNDv6NeJt92zSPUZgpJE%2BOkASd2d4nDVO7793fchKbPpy73MEE9%2B%2B1YW%2FJPMs4V3veMBAqNMD%2BvQfs9dvvK7o2LMEQfRJfW1o%3D"}],"group":"cf-nel","max_age":604800}

X-Hs-Cache-Config

Other

BrowserCache-5s-EdgeCache-0s

X-Hs-Cache-Control

Other

s-maxage=36000, max-age=0

X-Hs-Cf-Cache-Status

Other

HIT

X-Hs-Cfworker-Meta

Other

{"contentType":"SITE_PAGE","resolver":"PreRenderedContentResolver"}

X-Hs-Content-Id

Other

48689736047

X-Hs-Hub-Id

Other

7142379

X-Hs-Portal-Id

Other

7142379

X-Hs-Prerendered

Other

Thu, 22 Jan 2026 01:39:50 GMT

Recommendations

Enable compression (gzip/brotli) to improve performance