Open
Cached
·
just now
18
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Good
max-age=63072000; includeSubDomains
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Present
ALLOW-FROM https://wisc.edu
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Missing
Not configured
Recommendations
- • Consider adding 'preload' to HSTS for maximum security
- • Add Content-Security-Policy header to prevent XSS attacks
- • Consider adding Permissions-Policy to control browser features
Performance Headers
0 headers
No performance headers found
Caching Headers
2 headers
Cache-Control
Caching
max-age=0, private, must-revalidate
Etag
Caching
W/"79867d26487d2579f91a4a1c084bdc89"
Content Headers
2 headers
Content-Length
Content
102925
Content-Type
Content
text/html; charset=utf-8
Server Headers
2 headers
Server
Server
Apache/2.4
X-Runtime
Server
0.017786
CORS Headers
0 headers
No CORS headers found
Cookies Headers
1 headers
Set-Cookie
Cookies
_lws_session=BV%2FVkm1GaEiDF78isaBd7sBIn7fBtgcyG6O2RK6otrTtW7viw8OU9xu0%2FWiXN9IoHeKgcoTM9KOUvXuW7rdk1jlp3Y0mlG4rLGXkvmo6Jz8iq332Z2x7gCKyGcjH5SQLhnuBkxl%2BQQY%2B8%2FINcvVbQ4rreD4hWY3jTIWwCwzefseXQIMZwPxxSf%2FzQ2dlWbh9vr%2BS78zEG20rfAYxHI%2FEpu0lce4XzFeacRyDHyn8daFVSQhUW2VbjKaykMcX6ho69dUnjSoa9tru7pdj9sXY%2BXAHGqSUEDkjALUW%2FNuL9Ro%3D--XjtL4nct%2B827d1Zb--JL4fSf4wLMpUB1R3rreucQ%3D%3D; path=/; secure; httponly; samesite=lax
Other Headers
6 headers
Date
Other
Sat, 15 Nov 2025 06:37:26 GMT
Link
Other
</assets/application-9c06a6fcd6027efa44e861efb356271f6b8faebdd3c449716674d1c2974e9dd7.css>; rel=preload; as=style; nopush
Status
Other
200 OK
Upgrade
Other
h2,h2c
X-Permitted-Cross-Domain-Policies
Other
none
X-Request-Id
Other
4dcb453d-3926-4576-94e2-0196d6afadc2
Recommendations
Enable compression (gzip/brotli) to improve performance
Analysis completed in 594ms